Dmitrii Kuvaiskii
Dmitrii Kuvaiskii
A quick comment from Pawel (in priv): > Apparently the default for distribution-packaged programs is to use a hardcoded path. > Try it: `file /usr/bin/* | grep Python | cut...
Jenkins, test this please
Jenkins, test this please
@lejunzhu Have you encountered/debugged this issue with `fs.appendFileSync()`? Looks like a genuine bug...
> According to this comment, Gramine doesn't support O_APPEND today: @lejunzhu No, that's not like this. Gramine's *PAL component* doesn't support `O_APPEND`. But Gramine's *LibOS component* supports `O_APPEND` (at least...
protected_mrsigner_files: Disallowing access to file ...; file is not protected, trusted or allowed.
We have numereous small bugs in our allowed/trusted/protected files implementation... We are planning a complete rewrite of this implementation soon, hopefully this quarter.
@mkow @woju @boryspoplawski We discussed this offline several times, but I couldn't find a corresponding GitHub issue. So created this one. We have more and more asks like this from...
(Please note that the proposed tools are **not** for enclave signing purposes. The proposed tools are only for post-signing actions like checking existing-enclaves' measurements.)
Thanks @boryspoplawski for the snippets. For the first tool, we probably want to have Click-style arguments and export different SIGSTRUCT fields, not only MRENCLAVE. Or we can simply dump the...
Reviving the old thread: @boryspoplawski @mkow @pwmarcz @woju Do you think such explicit tools would be useful? We on the Intel side (me, Mona, Vijay and others) think that at...