Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

System calls inside enclave

sharma__ramya
Beginner
574 Views

Hi,

I have observed that majority of the system calls, like fork() and rand() are prohibited inside the enclave. But, some of the memory based system calls, like mmap() are allowed.

Can anyone please explain why and how mmap() is allowed inside the enclaves?

Thanks!

0 Kudos
1 Reply
Michalevsky__Yan
Beginner
574 Views

Syscalls are generally not allowed inside enclaves. If you're able to call one of them, it means that the SDK replaces this libc function with it's own implementation. In the SDK it's under tlibc.

0 Kudos
Reply