general/occlum
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,362 Commits 3 Branches 0 Tags 8.1 MiB
b749b7db3b
Commit Graph

1362 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Zheng, Qi
7181abd390 [demos] Specify the sgx/occlum apt packages version 2023-04-04 13:35:51 +08:00
Zheng, Qi
91dd93d9a4 [demos] Update tf serving example with resnet model 2023-04-04 13:35:51 +08:00
zhubojun
6cb368fbbe [libos] Retain red zone area and FLAGS unmodified across syscall 
1. The previous implementation of __occlum_syret usse the red zone to
save the register temporarily, which may overwrite the red zone area.
This change avoids using the red zone when handling syscall.

2. Save and restore the FLAGS register before and after the operations
on PKRU to keep the FLAGS unmodified.
 2023-03-31 12:35:13 +08:00
Shaowei Song
5a03deb6b9 [demos] Improve steps of dependency preinstall 2023-03-29 09:31:20 +08:00
Shaowei Song
4c407e8f67 [benchmark ci] Enable AsyncSFS+JinDisk test on branch 1.0.0-preview 2023-03-29 09:31:20 +08:00
sunhe05
2b98e1a076 Add PaddlePaddle demo 2023-03-22 10:34:57 +08:00
Zheng, Qi
79bbd2ad3e [libos] Print error sgx status when ocall failed 2023-03-21 15:08:49 +08:00
LI Qing
27a3c75209 [libos] Refine the getdents syscall. 2023-03-18 17:18:57 +08:00
Zheng, Qi
bc9e78b360 [demos] Use occlum provided libnss libraries for pytorch demo 2023-03-17 16:44:59 +08:00
Zheng, Qi
d89332cee8 [tools] Do the objcopy in the final destination libos lib 2023-03-17 16:44:59 +08:00
Zheng, Qi
046ee73756 [toolchain] Speed up glibc build 2023-03-17 16:44:59 +08:00
Hui, Chunyang
492814132a Fix potential server test failure 
Due to scheduling, the client could attempt to connect to the server
before the server starts to accept. Make the client retry multiple
times before returning with error.
 2023-03-17 14:47:22 +08:00
Hui, Chunyang
478d0d381f Add catch unwind for occlum_ecall_init 2023-03-16 18:43:31 +08:00
ClawSeven
04083cc200 [demos] Fix distributed pytorch panic 2023-03-16 10:28:03 +08:00
Zheng, Qi
745a7619c9 Modify the project license description 2023-03-15 16:08:41 +08:00
Zheng, Qi
e30a8a63e2 [glibc] No need build libcrypt from glibc 2023-03-08 09:51:23 +08:00
LI Qing
573ba85634 [libos] Fix the file closing issue in dup2/dup3 2023-03-07 14:20:29 +08:00
LI Qing
0ac398b635 Add support to statfs on hostfs 2023-03-04 21:08:17 +08:00
Zheng, Qi
2093b360d5 [ci] fix netty hw ci container name error 2023-03-03 14:33:14 +08:00
ClawSeven
ecf7d76ae5 [Demo] Fix netty CI wrong return 2023-03-02 14:57:32 +08:00
Zheng, Qi
80e83920c5 [ci] Add netty in HW CI 2023-03-02 14:57:32 +08:00
Zheng, Qi
db2031a45f [ci] Fix typo on netty demo ci 2023-03-02 14:57:32 +08:00
Zheng, Qi
80e2858cee [libos] Support setting hard limit 2023-03-01 09:22:00 +08:00
ClawSeven
cc11864ac6 [Demo] Add Netty unit test demo 2023-02-27 09:06:31 +08:00
Zheng, Qi
8b62532cbb [copybom] Add more default search paths 2023-02-24 20:56:17 +08:00
Zheng, Qi
0bbfec0f24 [libos] Add syscall pwritev and preadv 2023-02-24 20:56:17 +08:00
Zheng, Qi
0f33e93fd5 [libos] Fix size checking bug for shmget 2023-02-24 20:56:17 +08:00
Zheng, Qi
6b86f37bd4 Bump version to 0.29.5 2023-02-24 11:20:00 +08:00
ClawSeven
e1cc5df1c8 [Demo] Fix flask dependencies conflict 2023-02-21 11:17:25 +08:00
Zheng, Qi
500ca21d52 [libos] Fix bug of sigtimedwait for timeout NULL 2023-02-15 17:07:13 +08:00
Shaowei Song
dbe404f16a [sefs] Make cache size configurable in Occlum.json 2023-02-09 09:09:01 +08:00
LI Qing
5174feae15 [hyper mode] Add support for the package command 2023-02-08 16:39:41 +08:00
Zheng, Qi
386e968ccb [libos] Enable backtrace for memory allocation failure 2023-02-02 10:26:12 +08:00
Hui, Chunyang
6107a32675 Fix mremap lock range when merging connecting chunks 2023-01-31 10:16:28 +08:00
Hui, Chunyang
28fb6fd767 Update gvisor test with prepare_bazel.sh 2023-01-18 13:11:16 +08:00
Hui, Chunyang
a9c0b1c4aa Fix kernel heap max size potentially smaller than init 2023-01-18 13:10:19 +08:00
volcano0dr
ea7a51be49 Bump version to 0.29.4 2023-01-16 11:32:43 +08:00
Hui, Chunyang
997c21a45f Fix reserved memory permission for EDMM support 2023-01-14 17:56:26 +08:00
Kun Lai
12cb488f36 [libos] Fix vulnerable nonce in DCAP verifier 
This commit fixed a security issue in the dcap verifier. The issue was caused by the '[in, out]' attributes of pointer parameter qve_report_info in the ocall function occlum_ocall_verify_dcap_quote(). This led to the vulnerability where the protected qve_report_info.nonce field in libos could be arbitrarily rewritten by attacker outside libos.

Signed-off-by: Kun Lai <me@imlk.top>
 2023-01-14 00:12:42 +08:00
Zheng, Qi
a6458eb662 [ci] Do not run container with network host for hw ci 2023-01-13 19:58:09 +08:00
Shaowei Song
40f04a2fac [ci] Improve schedule on hw ci 2023-01-12 11:22:51 +08:00
Shaowei Song
40330b116e [ci] Enable benchmark ci on schedule on branch 1.0.0-preview 2023-01-12 11:22:51 +08:00
Hui, Chunyang
f8825e453e Fix mmap with MAP_FIXED non-atomic behaviour 2023-01-11 16:47:20 +08:00
Zheng, Qi
b56054457f [ci] Do repo clean when starting each hw ci job 2023-01-10 10:54:17 +08:00
Hui, Chunyang
fb12642254 Fix brk not reset memory 2023-01-06 22:56:41 +08:00
Hui, Chunyang
0bf4a5a7f7 Fix mprotect and mremap potential failure 2023-01-06 22:56:41 +08:00
Zheng, Qi
9e9c7c1644 [demos] Disable some segment fault LTP cases 2023-01-06 17:38:00 +08:00
Zheng, Qi
7de4a2b3cd [libos] Add sgx_get_key ioctl command 2023-01-03 17:55:23 +08:00
Shaowei Song
b3e2d6c873 [hw-ci] Add MySQL to hw mode test 2022-12-30 22:27:23 +08:00
Hui, Chunyang
d7d485de27 Fix flask demo failure 2022-12-23 18:33:53 +08:00