general/occlum
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,184 Commits 3 Branches 0 Tags 8.1 MiB
e1cc5df1c8
Commit Graph

1184 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
ClawSeven
e1cc5df1c8 [Demo] Fix flask dependencies conflict 2023-02-21 11:17:25 +08:00
Zheng, Qi
500ca21d52 [libos] Fix bug of sigtimedwait for timeout NULL 2023-02-15 17:07:13 +08:00
Shaowei Song
dbe404f16a [sefs] Make cache size configurable in Occlum.json 2023-02-09 09:09:01 +08:00
LI Qing
5174feae15 [hyper mode] Add support for the package command 2023-02-08 16:39:41 +08:00
Zheng, Qi
386e968ccb [libos] Enable backtrace for memory allocation failure 2023-02-02 10:26:12 +08:00
Hui, Chunyang
6107a32675 Fix mremap lock range when merging connecting chunks 2023-01-31 10:16:28 +08:00
Hui, Chunyang
28fb6fd767 Update gvisor test with prepare_bazel.sh 2023-01-18 13:11:16 +08:00
Hui, Chunyang
a9c0b1c4aa Fix kernel heap max size potentially smaller than init 2023-01-18 13:10:19 +08:00
volcano0dr
ea7a51be49 Bump version to 0.29.4 2023-01-16 11:32:43 +08:00
Hui, Chunyang
997c21a45f Fix reserved memory permission for EDMM support 2023-01-14 17:56:26 +08:00
Kun Lai
12cb488f36 [libos] Fix vulnerable nonce in DCAP verifier 
This commit fixed a security issue in the dcap verifier. The issue was caused by the '[in, out]' attributes of pointer parameter qve_report_info in the ocall function occlum_ocall_verify_dcap_quote(). This led to the vulnerability where the protected qve_report_info.nonce field in libos could be arbitrarily rewritten by attacker outside libos.

Signed-off-by: Kun Lai <me@imlk.top>
 2023-01-14 00:12:42 +08:00
Zheng, Qi
a6458eb662 [ci] Do not run container with network host for hw ci 2023-01-13 19:58:09 +08:00
Shaowei Song
40f04a2fac [ci] Improve schedule on hw ci 2023-01-12 11:22:51 +08:00
Shaowei Song
40330b116e [ci] Enable benchmark ci on schedule on branch 1.0.0-preview 2023-01-12 11:22:51 +08:00
Hui, Chunyang
f8825e453e Fix mmap with MAP_FIXED non-atomic behaviour 2023-01-11 16:47:20 +08:00
Zheng, Qi
b56054457f [ci] Do repo clean when starting each hw ci job 2023-01-10 10:54:17 +08:00
Hui, Chunyang
fb12642254 Fix brk not reset memory 2023-01-06 22:56:41 +08:00
Hui, Chunyang
0bf4a5a7f7 Fix mprotect and mremap potential failure 2023-01-06 22:56:41 +08:00
Zheng, Qi
9e9c7c1644 [demos] Disable some segment fault LTP cases 2023-01-06 17:38:00 +08:00
Zheng, Qi
7de4a2b3cd [libos] Add sgx_get_key ioctl command 2023-01-03 17:55:23 +08:00
Shaowei Song
b3e2d6c873 [hw-ci] Add MySQL to hw mode test 2022-12-30 22:27:23 +08:00
Hui, Chunyang
d7d485de27 Fix flask demo failure 2022-12-23 18:33:53 +08:00
Hui, Chunyang
08b3dc7268 Update internal config tool for EDMM support 2022-12-23 18:33:53 +08:00
Zheng, Qi
22ff266958 Clean up unnecessary default_mmap_size configuration in demos 2022-12-21 23:19:25 +08:00
Zheng, Qi
d34d54a821 Add syscall getrlimit and setrlimit support 2022-12-21 23:18:14 +08:00
Zheng, Qi
ab14a3e479 [demos] Provide optional OMP_NUM_THREADS setting to distributed pytorch 2022-12-18 17:05:29 +08:00
Shaowei Song
588b458268 [sefs] Configure larger cache size to improve pfs performance 2022-12-12 14:03:59 +08:00
LI Qing
d63b3c561c Improve the usability of occlum start/exec/stop cmd 2022-12-11 19:33:04 +08:00
Shaowei Song
6dcdfc2fc4 [demos] Add MySQL demo 2022-12-11 19:28:38 +08:00
Zheng, Qi
47bd1fd7af [demos] Add distributed pytorch demo 2022-12-07 22:15:33 +08:00
Zheng, Qi
a5cdcc8045 [toolchain] Make occlum-go support gcc/glibc option 
In default, occlum-go uses musl-gcc. Users can configure
occlum-go to use gcc like below.
" CC=gcc occlum-go build "
 2022-12-07 22:14:03 +08:00
Zheng, Qi
77ff07f522 Bump to 0.29.3 2022-12-07 11:45:45 +08:00
Zheng, Qi
69cc20d703 [test] No need build Occlum to make test 2022-12-05 20:09:03 +08:00
Zheng, Qi
242e0b63d2 [libos] Fix envs overidden bug 2022-12-05 20:07:32 +08:00
Hui, Chunyang
0a367784cb Fix grpc pingpong test 2022-12-05 19:37:26 +08:00
LI Qing
70d3bf690c Print the raw errno if it is not an expected value 2022-12-05 13:57:13 +08:00
Zheng, Qi
3c11d589f4 [demos] Move all the benchmark demos together 2022-11-30 21:25:32 +08:00
Zheng, Qi
e54a3d1844 [example] Update docker image version existed in docker hub 2022-11-24 10:45:27 +08:00
Hui, Chunyang
0f789b49bc Fix exit_group not interrupt wait4 2022-11-15 18:01:46 +08:00
Zheng, Qi
ac30c2b787 Bump to 0.29.2 2022-11-08 18:49:23 +08:00
Zheng, Qi
4871f15e14 [installer] Add occlum golang debian installer 2022-11-07 13:23:59 +08:00
LI Qing
64c75e6d40 Add partial support for '/proc/stat' and '/proc/[pid]/stat' 2022-11-06 20:56:29 +08:00
Zheng, Qi
178bd023e3 [demos] Fix the issue of grpc_benchmark not working on go 1.18 2022-11-01 15:21:52 +08:00
Zheng, Qi
37d1f58281 [toolchain] Use Occlum go repo 2022-11-01 15:21:52 +08:00
Zheng, Qi
3ef075ef8a [demos] Fix flask_tls python packages dependency issue 2022-10-31 17:30:43 +08:00
Zheng, Qi
d5c84facf4 [toolchain] Update java 11 (musl) toolchain 2022-10-31 15:09:26 +08:00
Zheng, Qi
22ff6433ae Set conda python version as 3.8.10 to workaround non-PIE issues 2022-10-27 10:32:01 +08:00
LI Qing
3fa049df47 Add the FIO demo 2022-10-26 13:00:19 +08:00
LI Qing
96166dadc2 Add setpriority and getpriority syscall 2022-10-26 13:00:19 +08:00
Zheng, Qi
e3a0233c46 Update tf_serving example based on Occlum 0.29.1 2022-10-26 10:13:51 +08:00