Dmitrii Kuvaiskii
Dmitrii Kuvaiskii
> Why do we need a new function for this? Why cannot it be static information set at the startup? +1 to @boryspoplawski. This is not needed, let's just have...
> So if you want to have your own `myhost` definition should this be a part of the application itself, instead of trusting server configuration. What does it mean exactly,...
> and this log : terminate called after throwing an instance of 'std::out_of_range' The size of your SGX enclave is only 256MB. I suggest you to increment it to smth...
There is clearly not enough enclave memory, based on your logs. E.g. you have lines like this: ``` [P1:T3:ServerZP] trace: ---- shim_mmap(0, 0x8000000, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_NORESERVE, -1, 0x0) ... [P1:T3:ServerZP] trace:...
Thanks. I don't see anything special in the new log... Could you try the latest `master` branch of Gramine? Maybe the bug was fixed in Gramine in the last couple...
@riturajsingh487 Could you attach the new logs?
### Some updates - I added a section to the main issue on `Testing on MS Azure`. Testing was successful, I didn't encounter any particular issues. ### Reply to @monavij...
> Now that we have three different schemes, replace `sgx.remote_attestation = true` with `sgx.remote_attestation = "none" | "epid" | "dcap" | "maa"` This is wrong. We don't need to add...
TODO: I was wrong about the `certs/` API endpoint. Edit the root comment to reflect how and why it should be used. **UPDATE:** done.
> So the client side would perform the regular RA-TLS flow, correct? No, the client side performs an MAA flow, *as part of the RA-TLS flow*. So, during RA-TLS handshake,...