mystikos
mystikos copied to clipboard
deislabs
Tools and runtime for launching unmodified container images in Trusted Execution Environments
We prefer install the prerequisite packages using Makefile in prereqs. Installing packages in yaml files like [this](https://github.com/deislabs/mystikos/blob/974288633bd6936505697057855bfb147142a441/.azure_pipelines/ci-pipeline-makefile.yml#L45) forces us to duplicate it for every pipeline.
`mystikos` only supports Intel DCAP driver version 1.7. The latest Intel DCAP driver is 1.11. https://github.com/deislabs/mystikos/blob/91685d015087381d2daf83e7449c12a41a23420b/prereqs/Makefile#L7 Do you have any plan to support the latest version of Intel DCAP (dev/sgx_enclave...
The following libc test fails because stat on ``/dev/null`` should set ``S_IFCHR`` bit in ``st_mode``. ``` $ make one TEST=/src/functional/stat.exe /home/mike/mystikos/build/bin/myst exec-sgx rootfs --memory-size=256m /src/functional/stat.exe src/functional/stat.c:28: S_ISCHR(st.st_mode) failed: Makefile:66: recipe...
Thread signal destructors need to be registered in lockfs.c around all the calls into the underlying filesystems once the lock is aquired. If a process terminating signal is handled that...
in this case the parent can go away. However the orphaned child now has no parent and we need to make sure that works properly
Working with Mystikos it time consuming when building from the top level. The default "make" rule builds Mystikos and tests (but not solutions). I propose these rules: - ``make`` --...
We have a static [process_times ](https://github.com/deislabs/mystikos/blob/main/kernel/times.c#L19)variable in kernel/times.c which is tracking the time for the main process. This is insufficient after posix_spawn/fork/vfork support. This affects reporting for SYS_times, SYS_getrusage, /proc/[pid]/stat.
For better developer experience, it will be good add on to document what are the optional fields and what are mandatory fields in config.json file here.https://github.com/deislabs/mystikos/blob/main/doc/sign-package.md . If it is...
Is this document outdated? https://github.com/deislabs/mystikos/blob/main/doc/user-getting-started-c.md Should the command to build helloworld.c file should be gcc instead of myst-gcc. myst-gcc command is not available in current source code.
When running in debug mode with `--app-config-path` and without the path to the executable and the parameter as command line options, the myst command should be smart enough to check...