- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Folks, a quick N00b question:
Inside an Enclave, if I allocate memory via malloc, will the allocated pages be encrypted? If yes, does it mean that as long as I'm not doing any ocalls inside the Enclave, all memory is encrypted inside the enclave?
E.g. I can compile/statically link whatever library I need (maybe an openssl without I/O) and use it inside an Enclave without any modification, right?
Thanks
-Dvorak
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
>Inside an Enclave, if I allocate memory via malloc, will the allocated pages be encrypted?
Yes.
>If yes, does it mean that as long as I'm not doing any ocalls inside the Enclave, all memory is encrypted inside the enclave?
Correct. Note that the enclave itself is not encrypted before it is loaded.
>E.g. I can compile/statically link whatever library I need (maybe an openssl without I/O) and use it inside an Enclave without any modification, right?
If you have the source for such a library, and you can build it using the SGX SDK, then yes you can link it statically and place it inside an enclave. If your library does end up using any illegal instructions your enclave will fail as described in the reference manuals.
Link Copied
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
>Inside an Enclave, if I allocate memory via malloc, will the allocated pages be encrypted?
Yes.
>If yes, does it mean that as long as I'm not doing any ocalls inside the Enclave, all memory is encrypted inside the enclave?
Correct. Note that the enclave itself is not encrypted before it is loaded.
>E.g. I can compile/statically link whatever library I need (maybe an openssl without I/O) and use it inside an Enclave without any modification, right?
If you have the source for such a library, and you can build it using the SGX SDK, then yes you can link it statically and place it inside an enclave. If your library does end up using any illegal instructions your enclave will fail as described in the reference manuals.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page