-
Notifications
You must be signed in to change notification settings - Fork 180
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Docs] Add notes on _sgx_mrsigner
and _sgx_mrenclave
encryption keys
#1725
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I assume my approval doesn't count for anything, but thank you for making this information more accessible
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: all files reviewed, all discussions resolved, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: all files reviewed, 1 unresolved discussion, not enough approvals from different teams (1 more required, approved so far: Intel) (waiting on @dimakuv)
Documentation/manifest-syntax.rst
line 1011 at r1 (raw file):
same platform) to unseal files. This key is not accessible outside of the (same) enclave and thus cannot be used to decrypt files encrypted in this enclave.
This is weirdly written IMO, not sure if I'd understand this sentence without the context of this PR:
- It seems to say mostly the same information as the previous sentence. What's the additional information here which is missing?
- "This key [...] cannot be used to decrypt" - it can, if you extract it somehow. The key can be used, but it's just not accessible outside of the enclave.
- And it's actually not true, this key is used to decrypt the files, by the enclave itself.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewable status: 0 of 1 files reviewed, 1 unresolved discussion, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel), "fixup! " found in commit messages' one-liners (waiting on @kailun-qin and @mkow)
Documentation/manifest-syntax.rst
line 1011 at r1 (raw file):
Previously, mkow (Michał Kowalczyk) wrote…
This is weirdly written IMO, not sure if I'd understand this sentence without the context of this PR:
- It seems to say mostly the same information as the previous sentence. What's the additional information here which is missing?
- "This key [...] cannot be used to decrypt" - it can, if you extract it somehow. The key can be used, but it's just not accessible outside of the enclave.
- And it's actually not true, this key is used to decrypt the files, by the enclave itself.
Done, I rephrased. The previous text contained only the "recommendation" (...useful to allow...
). I wanted to add the text that has the "mandatory limitation" flavor to it.
Well, maybe I should be even more specific and change the verb cannot be used
to something like can only be derived by the specific enclave on the specific platform, and thus stays secret to the enclave+platform (unless the enclave software explicitly makes this key public)
. I don't know, feels like too much text.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 1 of 1 files at r2, all commit messages.
Reviewable status: all files reviewed, 2 unresolved discussions, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel), "fixup! " found in commit messages' one-liners (waiting on @dimakuv)
Documentation/manifest-syntax.rst
line 1009 at r2 (raw file):
* ``"_sgx_mrenclave"`` (SGX only) is the SGX sealing key based on the MRENCLAVE identity of the enclave. This is useful to allow only the same enclave (on the same platform) to unseal files, i.e., this key cannot be used by any other
Suggestion:
this key is not accessible to any other
Documentation/manifest-syntax.rst
line 1014 at r2 (raw file):
* ``"_sgx_mrsigner"`` (SGX only) is the SGX sealing key based on the MRSIGNER identity of the enclave. This is useful to allow all enclaves signed with the same key (and on the same platform) to unseal files, i.e., this key cannot be
ditto
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewable status: 0 of 1 files reviewed, 2 unresolved discussions, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel), "fixup! " found in commit messages' one-liners (waiting on @mkow)
Documentation/manifest-syntax.rst
line 1009 at r2 (raw file):
* ``"_sgx_mrenclave"`` (SGX only) is the SGX sealing key based on the MRENCLAVE identity of the enclave. This is useful to allow only the same enclave (on the same platform) to unseal files, i.e., this key cannot be used by any other
Done.
Documentation/manifest-syntax.rst
line 1014 at r2 (raw file):
Previously, mkow (Michał Kowalczyk) wrote…
ditto
Done.
This commit is in response to customers' confusion on how to decrypt files encrypted with these keys. Signed-off-by: Dmitrii Kuvaiskii <dmitrii.kuvaiskii@intel.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 1 of 1 files at r3, all commit messages.
Reviewable status: all files reviewed, all discussions resolved, "fixup! " found in commit messages' one-liners
a8298c0
to
64cd864
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 1 of 1 files at r4, all commit messages.
Reviewable status: complete! all files reviewed, all discussions resolved
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed 1 of 1 files at r4, all commit messages.
Reviewable status: complete! all files reviewed, all discussions resolved
Description of the changes
This commit is in response to customers' confusion on how to decrypt files encrypted with these keys.
How to test this PR?
N/A.
This change is