You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
yentsanglee opened this issue
Mar 23, 2021
· 3 comments
· Fixed by #3985
Assignees
Labels
SGXTag indicating associated with Intel SGXtestingIssue has to do with testing or quality managementtriagedThis label classifies an issue/PR as having been triaged.
Test case in #3799 does not cover the verification of the enclave config_id/config_svn are identical to evidence claim OE_CLAIM_SGX_CONFIG_ID and OE_CLAIM_SGX_CONFIG_SVN.
A test case is needed to verify the new fields when executed in supported hardware (I.e SGX Icelake).
For technical details, refer to #3054 SGX: Enable basic Key Separation and Sharing Support.
radhikaj
changed the title
Add test for verifying enclave config_id/config_svn fields in evidence claims
Add test for verifying enclave config_id/config_svn fields in evidence claims for SGX
Mar 29, 2021
@yentsanglee Are config_id/config_svn SGX specific?
If so, why?
radhikaj
added
triaged
This label classifies an issue/PR as having been triaged.
testing
Issue has to do with testing or quality management
labels
Mar 29, 2021
@yentsanglee Are config_id/config_svn SGX specific?
If so, why?
config_id/config_svn are defined by SGX. Other TEEs may or may not have similar init-time claim input. All definitions added in PR #3799 are all SGX specific - OE_SGX_ENCLAVE_CONFIG_DATA, oe_sgx_enclave_setting_config_data, etc.
3985: Add positive testcases for config_id verification on icelake VMs r=mingweishih a=manojrupireddy
Additional check is added to skip tests on coffee lake VMs.
Fix#3903
Made changes to oesign tool. Users need to specify EnableKSS field in conf file to leverage SGX KSS features.
Signed-off-by: manoj rupireddy <marupire@microsoft.com>
Co-authored-by: manoj rupireddy <marupire@microsoft.com>
3985: Add positive testcases for config_id verification on icelake VMs r=mingweishih a=manojrupireddy
Additional check is added to skip tests on coffee lake VMs.
Fix#3903
Made changes to oesign tool. Users need to specify EnableKSS field in conf file to leverage SGX KSS features.
Signed-off-by: manoj rupireddy <marupire@microsoft.com>
Co-authored-by: manoj rupireddy <marupire@microsoft.com>
SGXTag indicating associated with Intel SGXtestingIssue has to do with testing or quality managementtriagedThis label classifies an issue/PR as having been triaged.
Test case in #3799 does not cover the verification of the enclave config_id/config_svn are identical to evidence claim
OE_CLAIM_SGX_CONFIG_ID
andOE_CLAIM_SGX_CONFIG_SVN
.A test case is needed to verify the new fields when executed in supported hardware (I.e SGX Icelake).
For technical details, refer to #3054 SGX: Enable basic Key Separation and Sharing Support.
Related to #3890 and #3723
The text was updated successfully, but these errors were encountered: