general/occlum
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
726 Commits 3 Branches 0 Tags 8.1 MiB
fa1196c0ce
Commit Graph

60 Commits

Author SHA1 Message Date
Hui, Chunyang
b7897dc85d Update rust-sgx-sdk to fix se_event_wait bug 2021-06-08 21:39:19 +08:00
zongmin.gu
3756f0658c Update rust-toolchain to nightly-2020-10-25 2021-06-04 11:59:11 +08:00
LI Qing
789b57c6f7 Add statfs and fstatfs syscall 2021-06-04 11:36:47 +08:00
LI Qing
dd12fca9a1 Update sefs to use local Rust SGX SDK 2021-06-01 13:45:04 +08:00
LI Qing
8db6a55696 Mount ramfs at '/dev/shm' 2021-04-01 14:16:07 +08:00
LI Qing
be62e2c65d Add posix_fallocate 2021-03-03 11:06:09 +08:00
LI Qing
c3a02ffc28 Add support for the encrypted fs image 2021-03-01 16:45:01 +08:00
Hui, Chunyang
8c5e6ff20a Update sefs submodule to latest 2021-02-04 16:39:47 +08:00
Hui, Chunyang
1fab79681b Use goblin as elf parser and only load segments on demand 
Libos now Only read in headers and needed segments. Also reduce a memory
copy.
 2021-02-04 15:02:28 +08:00
He Sun
c2aefcacf0 Change the repository of Rust SGX SDK submodule 2021-01-28 09:25:54 +08:00
He Sun
b5ea09066a Add support for libos code coverage 
1. Add OCCLUM_COV to conditionally enable gcov profiling for libos Rust
code;
2. Add a makefile target to locally generate the coverage report in html
format.
 2021-01-19 15:30:26 +08:00
LI Qing
4301d6dfe6 Fix the mode of root inode in SEFS 2020-12-02 15:15:05 +08:00
LI Qing
1882458862 Mitigate SEFS's consistency and atomic issues 2020-11-07 11:45:37 +08:00
LI Qing
230e6fa380 Report the underlying SGX protected file I/O error 2020-10-21 12:20:52 +08:00
LI Qing
5e1635e2b8 Change the calling interface with sefs-cli 2020-09-25 16:34:07 +08:00
zongmin.gu
b28aee68b7 Upgrade Intel SGX SDK to 2.11 and Rust SGX SDK accordingly 2020-09-18 15:39:58 +08:00
LI Qing
ec9ffed1b0 Add "occlum mount" command to mount the secure FS 2020-09-18 12:39:12 +08:00
He Sun
03ab3b0338 Fix no return value of u_malloc_ocall in sgx_ustdc of Rust SGX SDK 2020-09-18 12:39:12 +08:00
LI Qing
1906865deb Fix the error about large file 2020-08-28 20:56:31 +08:00
Hui, Chunyang
9435b1a196 Add RPM installer for Occlum and C/C++ toolchains 2020-08-15 19:12:40 +08:00
LI Qing
3f6bcec1c5 Substitute ramFS with a temporary SEFS at "/tmp" 2020-08-15 19:12:39 +08:00
LI Qing
572873d9a4 Enable UnionFS 2020-07-23 21:40:34 +08:00
He Sun
c85163ec0a Add notification mechanism for basic IO events 
1. Add notification mechanism for select, poll, epoll and blocking IO
2. Add pipe support for select, poll and blocking IO
 2020-07-18 00:27:26 +08:00
LI Qing
1ad8f22170 Add support to handle symbolic link file 2020-07-10 18:08:03 +08:00
LI Qing
340e2188f5 Fix the path handling bug of SEFS when doing inode lookup 2020-06-17 14:51:30 +08:00
LI Qing
c8a4f2f8aa Update SEFS to generate deterministic MAC for integrity only SEFS 2020-06-13 03:33:32 +00:00
LI Qing
f54abc78a2 Support to execute a symlink file 2020-06-04 20:46:50 +08:00
Tate, Hongliang Tian
655869711a Support page fault 2020-06-04 20:36:29 +08:00
Zongmin
0c3466f4ad Add three new occlum commands: start, exec and stop 
Usage:
//start the occlum server
occlum start

//execute the command inside occlum
occlum exec [cmd] [-- <args>]

//stop the occlum server
occlum stop
 2020-05-15 03:02:42 +00:00
LI Qing
4567b40f22 Fix a bug of zipping symlink files in rcore-fs-fuse 2020-05-15 03:02:42 +00:00
Zongmin
a6d97d5b4f Update the sdk version to 2.9.1 
Fix std::alloc::Alloc not found
The lastest Rust changes the trait to std::alloc::AllocRef.

Update the docker files to support sgx 2.9.1

Remove the compilerRT dependency for rust sdk update
 2020-05-15 03:02:42 +00:00
LI Qing
978edf8a17 Add chmod and chown system calls 2020-04-03 03:39:57 +00:00
LI Qing
23329efe14 Fix the broken dependency on SEFS 
SEFS depends on version 0.9 of bitvec crate, which has been yanked on crates.io
by the crate author for some reasons. To fix this, we upgrade to the latest
version of bitvec crate.
 2020-03-30 08:58:57 +00:00
LI Qing
c1669791f6 Update the SEFS submodule 2020-03-24 14:49:21 +00:00
Hui,Chunyang
4ebedd9bf5 Improve simulation mode user experience 
Simulation mode and hardware mode can both work without rebuild Occlum.
 2020-03-07 09:44:49 +00:00
LI Qing
2372ef0d4e Fix make submodule command error 2020-02-10 12:02:23 +00:00
LI Qing
343c19391a Add Python demo 2020-01-23 04:40:54 +00:00
LI Qing
488ec48fe7 Upgrade Rust SGX SDK and its deps to the latest 
1. Upgrade Rust SGX SDK to v1.1.0
2. Upgrade Intel SGX SDK to v2.7.1
3. Upgrade Rust to nightly-2019-11-25
 2020-01-23 04:40:54 +00:00
Shuang Liu
68e02962d5 Harden SEFS with extra MAC and permission checks 2019-10-12 16:55:57 +00:00
Shuang Liu
d61edad08f Randomize the file names of SEFS inodes on the host FS 2019-09-06 15:08:13 +00:00
Tate, Hongliang Tian
dff0dbf77d Add the integrity-only mode SEFS 
* Add patch to Rust SGX SDK to enable integrity-only SgxFile
* Upgrade to the new SEFS extended with the integrity-only mode
* Use integrity-only SEFS for /bin and /lib in test
* Add the MAC of integrity-only SEFS to Occlum.json in test
* Mount multiple FS according to Occlum.json
* Check the MACs of integrity-only SEFS images
 2019-08-17 04:20:11 +00:00
Tate, Hongliang Tian
76f91a1aa3 Add Occlum.json. No more configs hardcoded in code 
1. Add Occlum.json as Occlum's config file
2. Add tools/bin/build_enclave
3. Add tools/bin/protect_integrity
4. Validate Occlum.json.protected on LibOS startup
5. Parse Occlum.json.protected on LibOS startup
6. Config enclave size using Occlum.json
7. Config process memory sizes using Occlum.json
 2019-08-09 09:19:51 +00:00
Wang Runji
c656776eb1 Fix MountFS sync 2019-08-02 08:34:40 +00:00
Wang Runji
c68c3c9a94 Fix the write-without-updating-size bug of SEFS 2019-08-02 05:31:42 +00:00
Wang Runji
29278db8f4 support multiple fs 
- use RamFS as rootfs, mount SEFS at /test
- for testing convenience, set default cwd to /test
- fix spawn path and change_cwd
 2019-07-19 03:49:18 +00:00
Tate, Hongliang Tian
30265261cf Remove a deprecated submodule sgx_protect_file 2019-07-18 11:02:01 +00:00
WangRunji
2fdc7d3b17 sefs: fix Rust SGX SDK version and Rust nightly version 2019-05-27 22:07:15 +08:00
Tate, Hongliang Tian
3465477cc1 Fix two bugs that prevents compilation and tests working 2019-04-29 00:01:17 +08:00
WangRunji
3defc8b9aa update sefs 2019-04-11 22:24:55 +08:00
WangRunji
4e8801850d update SEFS crate, move sgx_impl to libos 2019-03-29 14:20:25 +08:00