Dmitrii Kuvaiskii
Dmitrii Kuvaiskii
I am not convinced by this proposal. I think I understand the rationale, but here are my counter-arguments: 1. Stateful objects in PAL are complex. We strive to keep PAL...
This issue was discussed in https://github.com/gramineproject/gramine/discussions/1964, please see the comments there. TLDR: It was agreed to try to implement the EPOLLET emulation similar to [the already-existing one](https://github.com/gramineproject/gramine/blob/0c0971cd6930400b39b42eb92656b3968ae75698/libos/include/libos_internal.h#L230), without adding the...
Where is this log `mysqld-relay-bin.000002` located? In which absolute path?
The manifest file in the linked repo (https://github.com/enclaive/enclaive-docker-mariadb-sgx/blob/main/mariadb.manifest.template) doesn't seem to have the `/data/` path. Could you show your manifest file that you're currently using?
Ah, sorry, I missed line 20 in the manifest file. Now I can see that all files under `/data/` are encrypted by Gramine. This is unfortunately not supported currently: Encrypted...
You also need to specify that whole directory as `sgx.allowed_files` then: ``` sgx.allowed_files = [ "file:/var/lib/mysql", ] ``` Otherwise Gramine doesn't know what kind of files are contained in this...
> but I did not remove /var/lib/mysql from the mounts completely, I still have the following one. Should I still add this path to the allowed_files which I do not...
> ok, I added it to trusted_files and purged all remnants from the older tests and re-run the same steps, however I still have the same issue Unfortunately you can't...
> No, I added that path to trusted_files and the database can create new files on that path. This is probably because it is the sgx options but I use...
> However, a replica in Gramine fails with the error. Could you do some more investigation about whether the problem is in (2) or in (3) -- see my previous...