Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Contributor I
114 Views

Can an enclave directly access outside space with a virtual address?

Jump to solution

Hi,

I have two question here.

  1. If the CPU is in enclave mode, it cannot reach a none-EPC page. That's to say, the code in an enclave cannot directly access outside virtual space.
  2. The enclave can see all the virtual space of this process

-Thanks

0 Kudos

Accepted Solutions
114 Views

Hi Sam,

Yes, an enclave can access the complete address space of the process. Otherwise, communication between enclave and non-enclave would not be possible.The code within an enclave can directly write outside memory and directly read outside memory under previous system policy. However, it cannot fetch outside code.

Thanks and Reagrds,
Surenthar Selvaraj

View solution in original post

0 Kudos
3 Replies
Employee
114 Views

While running inside an enclave you can access pages outside EPC that belong to the process that created the enclave. That's how you copy data in and out. You cannot jump to continue execution outside enclave boundaries though.

0 Kudos
115 Views

Hi Sam,

Yes, an enclave can access the complete address space of the process. Otherwise, communication between enclave and non-enclave would not be possible.The code within an enclave can directly write outside memory and directly read outside memory under previous system policy. However, it cannot fetch outside code.

Thanks and Reagrds,
Surenthar Selvaraj

View solution in original post

0 Kudos
New Contributor I
114 Views

Thanks for your information...

0 Kudos