Borys Popławski
Borys Popławski
> Is it a boolean? Yes > Does it only pertain to the resolv.conf file, what about others? What others? Is anything needed beside this file? I think everything works...
What these files have to do with dockers `--net=host` option? It only causes the network namespace not to be unshared, this explanation doesn't make sense to me...
> Yes, and this updates the IP mapping info in the /etc/hosts file (resulting in a measurement failure in Gramine) Apparently docker mount binds them from host then. Anyway, my...
> `PalGetHostname` -> `/etc/hostname` Why do we need a new function for this? Why cannot it be static information set at the startup? > Make sure to integrate `PalGetHostname` with...
> We actually have a sethostname already in Gramine. This is why I put it here. > Or I miss read something: But it's a dummy implementation, which does not...
> My understanding was that with Gramine we target running a trusted process on untrusted server. So if you want to have your own myhost definition should this be a...
> Yes, of course, but this can be said about any file that we want to sanitize here... The point is not to make /etc/hosts file trustworthy, but to verify...
Please use proper markdown syntax, this is hardly readable.
This looks like a problem with your application, not Gramine. You access a non-existent key in std::map. I cannot tell whether it's because a problem in your app or because...
1. `seq` wasn't mean to be a public interface, it was intended to stay inside IPC implementation (i.e. not meant to be used as some other objects ID, which I...