Skip to content

Gramine base support #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 28 commits into from
Jul 15, 2022
Merged

Gramine base support #13

merged 28 commits into from
Jul 15, 2022

Conversation

mcornaton
Copy link
Contributor

No description provided.

@mcornaton mcornaton requested a review from a team July 8, 2022 12:18
james-toussaint
james-toussaint reviewed Jul 11, 2022
View reviewed changes
cloud-computing/gramine/README.md Outdated

4. Run the app:
```shell
docker run --device=/dev/sgx/enclave -v /iexec_in:/iexec_in -v /iexec_out:/iexec_out -v /var/run/aesmd/aesm.socket:/var/run/aesmd/aesm.socket -v $PWD/encryptedData:/workplace/encryptedData -v /opt/secret-prov/certs/:/graphene/attestation/certs/ --net=host -e session=${SESSION_ID} -e sps=localhost:4433 tee-gramine-python-hello-world:latest
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

--net=host + sps=localhost:4433 ?
We should be in a a docker network IMO

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/dev/sgx_enclave instead of /dev/sgx/enclave ?
What about /dev/sgx_provision which is provided as well with a native support in Linux kernel ?
What is the prerequisite to have /var/run/aesmd/aesmd.sock ?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd say this README should be an example for localhost running. Let's keep it simple!
Docker network will be covered in the script example I will provide later :)

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I just saw, that devices are mounted on /dev/sgx/enclave on Azure.
My second question becomes what of /dev/sgx/provision ?

jbern0rd
jbern0rd reviewed Jul 15, 2022
View reviewed changes
jbern0rd
jbern0rd approved these changes Jul 15, 2022
View reviewed changes
Copy link
Contributor

@jbern0rd jbern0rd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks

@mcornaton mcornaton merged commit be77c1c into feature/gramine Jul 15, 2022
@mcornaton mcornaton deleted the feature/gramine-base-support branch July 15, 2022 13:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jbern0rd jbern0rd jbern0rd approved these changes

+1 more reviewer

@james-toussaint james-toussaint james-toussaint approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@mcornaton @james-toussaint @jbern0rd