Open jmp0x7c00 opened 1 year ago
the variable ssl_session_outside is a pointer that holds an untrusted address (outside enclave) https://github.com/lsds/TaLoS/blob/052a93d6f62720a9027a56274e060b9bc84ea978/src/talos/patch/ssl_lib.c.patch#L1187
ssl_session_outside
the enclave code copies SSL session to the untrusted target buffer by memcpy, which results in privacy leakage. https://github.com/lsds/TaLoS/blob/052a93d6f62720a9027a56274e060b9bc84ea978/src/talos/patch/ssl_lib.c.patch#L1190
memcpy
the variable
ssl_session_outsideis a pointer that holds an untrusted address (outside enclave) https://github.com/lsds/TaLoS/blob/052a93d6f62720a9027a56274e060b9bc84ea978/src/talos/patch/ssl_lib.c.patch#L1187the enclave code copies SSL session to the untrusted target buffer by
memcpy, which results in privacy leakage. https://github.com/lsds/TaLoS/blob/052a93d6f62720a9027a56274e060b9bc84ea978/src/talos/patch/ssl_lib.c.patch#L1190