Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.
1457 Discussions

Does the SGX add support to handle page faults inside the enclave?

gu_j_1
Beginner
‎07-05-2016 06:56 PM
1,141 Views
Solved Jump to solution

If the host system is malicious, it can easily manipulate certain memory pages to be unavailable to trigger page faults to interrupt or infer the execution state in the enclave.

Will Intel add support to handle page faults inside the enclave in later SGX? If so, what is the expected time? If not, what are the considerations?

Thanks in advance!

0 Kudos
1 Solution
Surenthar_S_Intel
Employee
‎07-11-2016 12:01 AM
1,141 Views
Solved Jump to solution

Paging support is supposed to come in the next version of SDK

View solution in original post

0 Kudos
Copy link

Link Copied

2 Replies
yunfeng7854
New Contributor I
‎07-09-2016 06:27 PM
1,141 Views
Solved Jump to solution

Hi, I think I am having a similar question. As I can see from the documents, the processor will report a page fault exception to EXINFO and EXITINFO if SECS.MISCSELECT[0] != 0. So maybe the enclave can catch and handle page fault.

Then I tried to set in the enclave configure file to "<MiscSelect>1</MiscSelect>". In this case the enclave cannot be loaded with an error code 0x2010. I also see from the documents that:

(1) MiscSelect and MiscMask are for future functional extension. Currently, MiscSelect must be 0. Otherwise the corresponding enclave may not be loaded successfully.  --- SGX SDK Developer Reference for linux os, page 57

(2) If CPUID.(EAX=12H, ECX=0):EBX[31:0] = 0, MISCSELECT must be 0.
If CPUID.(EAX=12H, ECX=0):EBX[31:0] !=0, enclave writers must specify MISCSELECT such that each cleared bit in MISCMASK must also specify the corresponding bit as 0 in MISCSELECT. --- Intel Software Guard Extensions Programming Reference, page 30

And it seems that with query to my processor, the CPUID.(EAX=12H, ECX=0):EBX[31:0] = 0. Maybe that means my processor currently doesn't support this feature?

I am not sure.. and I am wondering: is this a hardware or software restriction? Will SGX v2 be a software or hardware upgrade?

Thanks a lot

0 Kudos
Copy link
Surenthar_S_Intel
Employee
‎07-11-2016 12:01 AM
1,142 Views
Solved Jump to solution

Paging support is supposed to come in the next version of SDK

0 Kudos
Copy link
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.