Skip to content

EDMM user space support for kernel interfaces #751

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 7 commits into from
Closed

EDMM user space support for kernel interfaces #751

wants to merge 7 commits into from

Conversation

haitaohuang
Copy link
Contributor

This implementation includes:

  1. the reusable Enclave Memory Manager as proposed previously on OE PR: Add SGX Enclave Memory Manager openenclave/openenclave#3991
  2. modifications for the Enclave Common Loader to support both the new kernel EDMM interfaces and legacy out-of-tree driver
  3. integration and tests with Intel SDK and PSW runtime support.
    Please refer to sdk/emm/README.md for a quick guide on build and test as well as a summary of current limitations:

lzha101 and others added 4 commits October 18, 2021 08:31
@lzha101 @haitaohuang
Add vdso support.
2a58457 
Signed-off-by: Zhang Lili <lili.z.zhang@intel.com>
@haitaohuang
Add detection for EDMM support in kernel
3c77c77 
Signed-off-by: Haitao Huang <4699115+haitaohuang@users.noreply.github.com>
@haitaohuang
vDSO user handler directly use current thread TCS.
77f3b39 
This avoids a 3-way deadlock for later EMM implementation.

The utility thread is inside enclave setting up TCS, waiting on mm_lock to commit SSA, etc.

Another thread #PF inside sgx_mm functions with mm_lock held, trigger vDSO user handler
which tries to get back into enclave via Enclave::ecall,  which calls acquire_thread
trying to get the m_thread_mutex of CThreadPool

A newly created pthread making ecall also tries to acquire_thread holding the
CThreadPool::m_thread_mutex will wait for the utility thread to finish allocating TCS.

For user handler already has the TCS for current thread, directly use it to enter enclave.

Signed-off-by: Haitao Huang <4699115+haitaohuang@users.noreply.github.com>
@haitaohuang
EDMM support using kernel interfaces
c636761 
Add a runtime agnostic enclave memory manager implementation in sdk/emm.
The EMM APIs are based on design proposed in this PR: openenclave/openenclave#3991

Enclave common loader changes are in psw/enclave_common/sgx_mm_ocalls.cpp, which are basically
OCall support needed for EMM.

Intel SDK runtime specific support are implemented as runtime abstraction layer: sdk/trts/ema_rt.c

Current limitations, steps to build and test are documented in sdk/emm/README.md

Signed-off-by: Haitao Huang <4699115+haitaohuang@users.noreply.github.com>
Signed-off-by: Xiaofeng Xu <20158212+xxu36@users.noreply.github.com>
johnvenn
johnvenn reviewed Nov 25, 2021
View reviewed changes
@johnvenn
Copy link

Another concern is about the dealloc function, in this case:
alloced area 4pages, then mistakenly dealloc 2 pages, the ema node will be split, but we don't know the new addr and size of the new node. looks like user need to track what is allocated/deallocated when the enclave is running. This might be a problem.

@johnvenn
Copy link

per my understanding, the ema node should only exist during the enclave's lifetime, i.e., created/intiliazed on enclave initialization, and released on enclave_destroy, check the code, is there anywhere "destory_ema_root" invoked when enclave is destoryed?

johnvenn
johnvenn reviewed Nov 25, 2021
View reviewed changes
@haitaohuang
Copy link
Contributor Author

Another concern is about the dealloc function, in this case: alloced area 4pages, then mistakenly dealloc 2 pages, the ema node will be split, but we don't know the new addr and size of the new node. looks like user need to track what is allocated/deallocated when the enclave is running. This might be a problem.

It's similar to how mmap works, if user does not track and remove, EMAs(like VMAs) will be kept until enclave dies (like process dies).

@haitaohuang
emm: fix typos
bdec0dc 
Signed-off-by: Haitao Huang <4699115+haitaohuang@users.noreply.github.com>
@haitaohuang
update IOCTL definitions for EDMM
9ab0e75 
The ioctl numbers for EDMM functions are shifted in upstream patches:
https://patchwork.kernel.org/project/intel-sgx/cover/cover.1638381245.git.reinette.chatre@intel.com/
Change those definitions accordingly in isgx_user.h

Signed-off-by: Haitao Huang <4699115+haitaohuang@users.noreply.github.com>
haitaohuang
haitaohuang commented Dec 3, 2021
View reviewed changes
@haitaohuang
emm: update kernel branch in README
35122e9 
Signed-off-by: Haitao Huang <4699115+haitaohuang@users.noreply.github.com>
@haitaohuang
Copy link
Contributor Author

haitaohuang commented Feb 11, 2022
edited
Loading

Kernel patch updated to v2: https://github.com/rchatre/linux/tree/sgx/sgx2_submitted_v2_plus_rwx
Please use branch edmm_v2 in this repo for testing.
Closing this PR and create a new one for v2: #794

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@llly llly Awaiting requested review from llly

@lzha101 lzha101 Awaiting requested review from lzha101

@andyzyb andyzyb Awaiting requested review from andyzyb

@jbdelcuv jbdelcuv Awaiting requested review from jbdelcuv

1 more reviewer

@johnvenn johnvenn johnvenn left review comments

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@haitaohuang @johnvenn @lzha101