-
Notifications
You must be signed in to change notification settings - Fork 181
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[PAL/Linux-SGX] Introduce
sgx.cpu_features.[...]
manifest options
Introduce `sgx.cpu_features.[...] = "[unspecified|disabled|required]"` instead of `sgx.require_[...] = true|false`. Also, make more explicit the difference between security-hardening CPU features and not-security-hardening ones. Mapping of deprecated and new manifest options: - `sgx.cpu_features.[...] = "unspecified"` -> `sgx.require_[...] = false` - `sgx.cpu_features.[...] = "required"` -> `sgx.require_[...] = true` `sgx.cpu_features.[...] = "disabled"` is new and it disables the corresponding CPU feature inside the SGX enclave even if this CPU feature is available on the system: this may improve enclave performance because this CPU feature will *not* be saved and restored during enclave entry/exit. This commit also renames `sgx.require_exinfo` to `sgx.use_exinfo`. The old name was ambiguous -- `require_exinfo = false` can be read as "don't require exinfo", but in practice it disables exinfo even on CPUs which support it. Signed-off-by: Dmitrii Kuvaiskii <dmitrii.kuvaiskii@intel.com>
- Loading branch information
Showing
5 changed files
with
203 additions
and
47 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters