Skip to content

Commit

Permalink
Port eservice build updates to pservice
Browse files Browse the repository at this point in the history 
Signed-off-by: Bruno Vavala <[email protected]>
  • Loading branch information
@bvavala
bvavala committed May 16, 2024
1 parent aad3c42 commit 2220ada
Show file tree
Hide file tree
Showing 5 changed files with 36 additions and 14 deletions.
2 changes: 1 addition & 1 deletion pservice/Makefile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -72,7 +72,7 @@ $(SWIG_TARGET) : $(SWIG_FILES) $(ENCLAVE_LIB)

build :
mkdir $@
cd $@ && cmake .. -G "Unix Makefiles"
cd $@ && cmake .. $(CMAKE_OPTS) -G "Unix Makefiles"

install: $(EGG_FILE)
@ . $(abspath $(DSTDIR)/bin/activate) && \
Expand Down
16 changes: 15 additions & 1 deletion pservice/lib/libpdo_enclave/CMakeLists.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,8 +22,8 @@ PROJECT(libpdo-enclave C CXX)
FILE(GLOB PROJECT_HEADERS *.h)
FILE(GLOB PROJECT_SOURCES *.cpp)
FILE(GLOB PROJECT_EDL enclave.edl)
FILE(GLOB PROJECT_CONFIG *.xml)
FILE(GLOB PROJECT_LDS *.lds)
SET(PROJECT_CONFIG pdo_enclave.config.xml)

SGX_EDGE_TRUSTED(${PROJECT_EDL} PROJECT_EDGE_SOURCES)
SET (LIBPDO_ENCLAVE_EDL ${PROJECT_EDL} PARENT_SCOPE)
Expand All @@ -32,6 +32,17 @@ IF(NOT EXISTS "${PDO_SOURCE_ROOT}/eservice/deps/include/eservice_mrenclave.h")
MESSAGE(FATAL_ERROR "complete eservice build first; eservice mrenclave is missing")
ENDIF()

# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
# Enclave configuration file
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

SGX_PREPARE_ENCLAVE_XML(${CMAKE_CURRENT_SOURCE_DIR}/${PROJECT_CONFIG}.in ${PROJECT_CONFIG})
ADD_CUSTOM_TARGET(prepare_enclave_xml DEPENDS ${PROJECT_CONFIG})
SET_PROPERTY(
TARGET prepare_enclave_xml
APPEND
PROPERTY ADDITIONAL_CLEAN_FILES ${PROJECT_CONFIG})

# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
# Compile targets
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Expand All @@ -49,5 +60,8 @@ TARGET_LINK_LIBRARIES(${PROJECT_NAME} ${COMMON_TRUSTED_LIBS})
TARGET_LINK_LIBRARIES(${PROJECT_NAME} -Wl,--end-group)

SGX_PREPARE_TRUSTED_LINK(${PROJECT_NAME})

# add dependency to ensure that enclave configuration file is created before post-build sgx-sign
ADD_DEPENDENCIES(${PROJECT_NAME} prepare_enclave_xml)
SGX_SIGN_ENCLAVE(${PROJECT_NAME} ${PDO_SGX_KEY_ROOT}/enclave_code_sign.pem ${PROJECT_CONFIG})
SGX_DEPLOY_FILES(${PROJECT_NAME} pservice)
2 changes: 1 addition & 1 deletion ...lib/libpdo_enclave/pdo_enclave.config.xml → .../libpdo_enclave/pdo_enclave.config.xml.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ limitations under the License.
<HeapMaxSize>0x800000</HeapMaxSize>
<TCSNum>1</TCSNum>
<TCSPolicy>1</TCSPolicy>
<DisableDebug>0</DisableDebug>
<DisableDebug>1</DisableDebug>
<MiscSelect>0</MiscSelect>
<MiscMask>0xFFFFFFFF</MiscMask>
</EnclaveConfiguration>
9 changes: 4 additions & 5 deletions pservice/pdo/pservice/enclave/enclave/enclave.cpp
View file
Original file line number Diff line number Diff line change
Expand Up @@ -356,17 +356,16 @@ namespace pdo {
Enclave::QuerySgxStatus();

sgx_launch_token_t token = { 0 };
int flags = SGX_DEBUG_FLAG;
pdo::error::ThrowSgxError((SGX_DEBUG_FLAG==0 ? SGX_ERROR_UNEXPECTED:SGX_SUCCESS),
"SGX DEBUG flag is 0 (possible cause: wrong compile flags)");

pdo::logger::LogV(PDO_LOG_DEBUG, "LoadEnclave, SGX_DEBUG_FLAG: %d", SGX_DEBUG_FLAG);

// First attempt to load the enclave executable
sgx_status_t ret = SGX_SUCCESS;
ret = this->CallSgx([this, flags, &token] () {
ret = this->CallSgx([this, &token] () {
int updated = 0;
return sgx_create_enclave(
this->enclaveFilePath.c_str(),
flags,
SGX_DEBUG_FLAG,
&token,
&updated,
&this->enclaveId,
Expand Down
21 changes: 15 additions & 6 deletions pservice/setup.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,8 @@
module_path = 'pdo/pservice/enclave'
module_src_path = os.path.join(script_dir, module_path)

debug_flag = os.environ.get('PDO_DEBUG_BUILD', False) in ("1")

compile_args = [
'-std=c++11',
'-Wno-switch',
Expand Down Expand Up @@ -109,6 +111,18 @@
os.path.join(module_src_path, 'secret_info.cpp')
]

compile_defs = [
('_UNTRUSTED_', 1),
('PDO_DEBUG_BUILD', debug_flag),
('SGX_SIMULATOR', SGX_SIMULATOR_value)
]

# When the debug flag (PDO_DEBUG_BUILD) is set, we set the EDEBUG define
# This ensures that the SGX SDK in sgx_urts.h sets the SGX_DEBUG_FLAG to 1.
# Otherwise the SDK sets it to 0.
if debug_flag :
compile_defs.append(('EDEBUG', None))

enclave_module = Extension(
'pdo.pservice.enclave._pdo_enclave_internal',
module_files,
Expand All @@ -117,12 +131,7 @@
libraries = libraries,
include_dirs = include_dirs,
library_dirs = library_dirs,
define_macros = [
('_UNTRUSTED_', 1),
('PDO_DEBUG_BUILD', os.environ.get('PDO_DEBUG_BUILD',0)),
('SGX_SIMULATOR', SGX_SIMULATOR_value)
],
undef_macros = ['NDEBUG', 'EDEBUG']
define_macros = compile_defs
)

## -----------------------------------------------------------------
Expand Down

0 comments on commit 2220ada

Please sign in to comment.