general/occlum
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,393 Commits 3 Branches 0 Tags 8.1 MiB
e9f2c09012
Commit Graph

96 Commits

Author SHA1 Message Date
LI Qing
5e1635e2b8 Change the calling interface with sefs-cli 2020-09-25 16:34:07 +08:00
zongmin.gu
b28aee68b7 Upgrade Intel SGX SDK to 2.11 and Rust SGX SDK accordingly 2020-09-18 15:39:58 +08:00
LI Qing
ec9ffed1b0 Add "occlum mount" command to mount the secure FS 2020-09-18 12:39:12 +08:00
He Sun
03ab3b0338 Fix no return value of u_malloc_ocall in sgx_ustdc of Rust SGX SDK 2020-09-18 12:39:12 +08:00
LI Qing
1906865deb Fix the error about large file 2020-08-28 20:56:31 +08:00
Hui, Chunyang
9435b1a196 Add RPM installer for Occlum and C/C++ toolchains 2020-08-15 19:12:40 +08:00
LI Qing
3f6bcec1c5 Substitute ramFS with a temporary SEFS at "/tmp" 2020-08-15 19:12:39 +08:00
LI Qing
572873d9a4 Enable UnionFS 2020-07-23 21:40:34 +08:00
He Sun
c85163ec0a Add notification mechanism for basic IO events 
1. Add notification mechanism for select, poll, epoll and blocking IO
2. Add pipe support for select, poll and blocking IO
 2020-07-18 00:27:26 +08:00
LI Qing
1ad8f22170 Add support to handle symbolic link file 2020-07-10 18:08:03 +08:00
LI Qing
340e2188f5 Fix the path handling bug of SEFS when doing inode lookup 2020-06-17 14:51:30 +08:00
LI Qing
c8a4f2f8aa Update SEFS to generate deterministic MAC for integrity only SEFS 2020-06-13 03:33:32 +00:00
LI Qing
f54abc78a2 Support to execute a symlink file 2020-06-04 20:46:50 +08:00
Tate, Hongliang Tian
655869711a Support page fault 2020-06-04 20:36:29 +08:00
Zongmin
0c3466f4ad Add three new occlum commands: start, exec and stop 
Usage:
//start the occlum server
occlum start

//execute the command inside occlum
occlum exec [cmd] [-- <args>]

//stop the occlum server
occlum stop
 2020-05-15 03:02:42 +00:00
LI Qing
4567b40f22 Fix a bug of zipping symlink files in rcore-fs-fuse 2020-05-15 03:02:42 +00:00
Zongmin
a6d97d5b4f Update the sdk version to 2.9.1 
Fix std::alloc::Alloc not found
The lastest Rust changes the trait to std::alloc::AllocRef.

Update the docker files to support sgx 2.9.1

Remove the compilerRT dependency for rust sdk update
 2020-05-15 03:02:42 +00:00
LI Qing
978edf8a17 Add chmod and chown system calls 2020-04-03 03:39:57 +00:00
LI Qing
23329efe14 Fix the broken dependency on SEFS 
SEFS depends on version 0.9 of bitvec crate, which has been yanked on crates.io
by the crate author for some reasons. To fix this, we upgrade to the latest
version of bitvec crate.
 2020-03-30 08:58:57 +00:00
LI Qing
c1669791f6 Update the SEFS submodule 2020-03-24 14:49:21 +00:00
Hui,Chunyang
4ebedd9bf5 Improve simulation mode user experience 
Simulation mode and hardware mode can both work without rebuild Occlum.
 2020-03-07 09:44:49 +00:00
LI Qing
2372ef0d4e Fix make submodule command error 2020-02-10 12:02:23 +00:00
LI Qing
343c19391a Add Python demo 2020-01-23 04:40:54 +00:00
LI Qing
488ec48fe7 Upgrade Rust SGX SDK and its deps to the latest 
1. Upgrade Rust SGX SDK to v1.1.0
2. Upgrade Intel SGX SDK to v2.7.1
3. Upgrade Rust to nightly-2019-11-25
 2020-01-23 04:40:54 +00:00
Shuang Liu
68e02962d5 Harden SEFS with extra MAC and permission checks 2019-10-12 16:55:57 +00:00
Shuang Liu
d61edad08f Randomize the file names of SEFS inodes on the host FS 2019-09-06 15:08:13 +00:00
Tate, Hongliang Tian
dff0dbf77d Add the integrity-only mode SEFS 
* Add patch to Rust SGX SDK to enable integrity-only SgxFile
* Upgrade to the new SEFS extended with the integrity-only mode
* Use integrity-only SEFS for /bin and /lib in test
* Add the MAC of integrity-only SEFS to Occlum.json in test
* Mount multiple FS according to Occlum.json
* Check the MACs of integrity-only SEFS images
 2019-08-17 04:20:11 +00:00
Tate, Hongliang Tian
76f91a1aa3 Add Occlum.json. No more configs hardcoded in code 
1. Add Occlum.json as Occlum's config file
2. Add tools/bin/build_enclave
3. Add tools/bin/protect_integrity
4. Validate Occlum.json.protected on LibOS startup
5. Parse Occlum.json.protected on LibOS startup
6. Config enclave size using Occlum.json
7. Config process memory sizes using Occlum.json
 2019-08-09 09:19:51 +00:00
Wang Runji
c656776eb1 Fix MountFS sync 2019-08-02 08:34:40 +00:00
Wang Runji
c68c3c9a94 Fix the write-without-updating-size bug of SEFS 2019-08-02 05:31:42 +00:00
Wang Runji
29278db8f4 support multiple fs 
- use RamFS as rootfs, mount SEFS at /test
- for testing convenience, set default cwd to /test
- fix spawn path and change_cwd
 2019-07-19 03:49:18 +00:00
Tate, Hongliang Tian
30265261cf Remove a deprecated submodule sgx_protect_file 2019-07-18 11:02:01 +00:00
WangRunji
2fdc7d3b17 sefs: fix Rust SGX SDK version and Rust nightly version 2019-05-27 22:07:15 +08:00
Tate, Hongliang Tian
3465477cc1 Fix two bugs that prevents compilation and tests working 2019-04-29 00:01:17 +08:00
WangRunji
3defc8b9aa update sefs 2019-04-11 22:24:55 +08:00
WangRunji
4e8801850d update SEFS crate, move sgx_impl to libos 2019-03-29 14:20:25 +08:00
WangRunji
557eb7dc60 fix sys_open. import crate log. 2019-03-29 14:20:25 +08:00
WangRunji
e41f65e132 fix test Makefile for SEFS 2019-03-29 14:20:25 +08:00
WangRunji
d56378d96a fix TimeProvider. enable INodeFile 2019-03-29 14:20:25 +08:00
WangRunji
0105756897 add fs submodule. import fs crate to libos 2019-03-29 14:20:25 +08:00
Tate, Hongliang Tian
7fcf195359 Upgrade Rust SGX SDK to v1.0.6 
... and Intel SGX SDK to v2.4, Rust to nightly-2019-01-28
 2019-02-23 16:31:01 +08:00
Tate, Hongliang Tian
e9064e3914 Upgrade Rust SGX SDK to v1.0.4 2019-02-16 16:23:30 +08:00
Tate, Hongliang Tian
757d3f2f4d Use my forked xmas-elf as a submodule 2019-02-16 16:23:30 +08:00
Tate, Hongliang Tian
7671dbf470 Load and run a Hello World program 2019-02-16 16:23:30 +08:00
Tate, Hongliang Tian
264ac7f993 Add write syscall and prints Hello World 2018-07-01 15:57:41 +08:00
Tate, Hongliang Tian
226245dd9a Add Rust SGX SDK as a submodule 2018-06-29 13:43:19 +08:00