Anees Sahib
Anees Sahib
`/etc/hosts` and `/etc/host.conf` too in certain cases. For ex if a container is run with `--net=host` to use the host's network.
Yes, and this updates the IP mapping info in the `/etc/hosts` file (resulting in a measurement failure in Gramine)
Can we close this in the core meeting pls? Time is tissue.
@dimakuv So the client side would perform the regular RA-TLS flow, correct? And will the client side ever know (or need to know) what the attesting backend is? (MAA or...
Apologies- i mixed up the terminology. I meant to say - the host enclave - performs a regular RA-TLS flow unaware of what flow the verifier is going to take...
@dimakuv - i think what you are saying is already being checked. see below. ``` if (diff_usec < TSC_REFINE_INIT_TIMEOUT_USECS) { /* less than TSC_REFINE_INIT_TIMEOUT_USECS passed from the previous update of...
I actually could not work on this any further after the linked issue was sorted out. @jinengandhi-intel - are we continuing to see this problem?
@jinengandhi-intel Do we know if this repros on master?
yes looks good. An additional thought - would it make sense to give the flexibility to the user to add more exclude paths via a proper template? This will help...
@sahason will start some work on this, but priority will be best effort.