You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@teaclave.apache.org by Mingshen Sun <no...@github.com> on 2020/07/03 05:25:22 UTC
[apache/incubator-teaclave] Introducing Teaclave SGX Tool (#379)
## Description
Introducing Teaclave SGX Tool.
This tool is to dump some SGX related information, e.g., hardware and software
information, remote attestation report. This can help to diagnose some issues
which may caused by the platform settings.
Examples:
```
$ ./teaclave_sgx_tool status
Vendor: GenuineIntel
CPU Model: Intel(R) Core(TM) i9-9900K CPU @ 3.60GHz
SGX:
Has SGX: true
Has SGX1: true
Has SGX2: false
Supports ENCLV instruction leaves EINCVIRTCHILD, EDECVIRTCHILD, and ESETCONTEXT: false
Supports ENCLS instruction leaves ETRACKC, ERDINFO, ELDBC, and ELDUC: false
Bit vector of supported extended SGX features: 0x00000000
Maximum supported enclave size in non-64-bit mode: 2^31
Maximum supported enclave size in 64-bit mode: 2^36
Bits of SECS.ATTRIBUTES[127:0] set with ECREATE: 0x0000000000000036 (lower) 0x000000000000001F (upper)
EPC physical base: 0x00000000B0200000 EPC size: 0x0000000005D80000 (93M) Supports flexible launch control: true
SGX device: /dev/sgx false, /dev/isgx true
AESM service: true
Kernel module (isgx):
filename: /lib/modules/5.3.0-59-generic/kernel/drivers/intel/sgx/isgx.ko
license: Dual BSD/GPL
version: 2.6.0
author: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
description: Intel SGX Driver
srcversion: F725A4ECA4194E2D2470F56
alias: acpi*:INT0E0C:*
depends:
retpoline: Y
name: isgx
vermagic: 5.3.0-59-generic SMP mod_unload
Kernel module (sgx):
modinfo: ERROR: Module sgx not found.
```
```
$ ./teaclave_sgx_tool attestation --key xxx --spid xxx
Remote Attestation Report:
{
"advisoryIDs": [
"INTEL-SA-00161",
"INTEL-SA-00320",
"INTEL-SA-00329",
"INTEL-SA-00220",
"INTEL-SA-00270",
"INTEL-SA-00293",
"INTEL-SA-00233"
],
"advisoryURL": "https://security-center.intel.com",
"epidPseudonym": "xxx",
"id": "xxx",
"isvEnclaveQuoteBody": "xxx",
"isvEnclaveQuoteStatus": "GROUP_OUT_OF_DATE",
"platformInfoBlob": "xxx,
"timestamp": "2020-07-03T04:56:45.611661",
"version": 4
}
ISV Enclave Quote Body:
version: V2(Linkable)
gid: 2865
isv_svn_qe: 11
isv_svn_pce: 10
qe_vendor_id: xxx
user_data: xxx
isv_enclave_report:
cpu_svn: xxx
misc_select: 0
attributes: xxx
mr_enclave: xxx
mr_signer: xxx
isv_prod_id: 0
isv_svn: 0
report_data: xxx
```
You can view, comment on, or merge this pull request online at:
https://github.com/apache/incubator-teaclave/pull/379
-- Commit Summary --
* Add Teaclave SGX Tool
-- File Changes --
M .drone.yml (2)
M README.md (1)
M attestation/src/key.rs (6)
M attestation/src/lib.rs (4)
M attestation/src/report.rs (2)
M attestation/src/service.rs (2)
M binder/src/proto.rs (21)
M cmake/TeaclaveGenVars.cmake (2)
M cmake/TeaclaveUtils.cmake (4)
M cmake/scripts/parse_cargo_packages.py (2)
M cmake/scripts/prep.sh (5)
M cmake/tomls/Cargo.sgx_trusted_lib.toml (1)
M cmake/tomls/Cargo.sgx_untrusted_app.toml (1)
M third_party/crates-io (2)
A tool/README.md (54)
A tool/app/Cargo.toml (22)
A tool/app/build.rs (54)
A tool/app/src/main.rs (201)
A tool/enclave/Cargo.toml (39)
A tool/enclave/Enclave.config.xml (12)
A tool/enclave/src/lib.rs (97)
-- Patch Links --
https://github.com/apache/incubator-teaclave/pull/379.patch
https://github.com/apache/incubator-teaclave/pull/379.diff
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/apache/incubator-teaclave/pull/379
Re: [apache/incubator-teaclave] Introducing Teaclave SGX Tool (#379)
Posted by Mingshen Sun <no...@github.com>.
Merged #379 into master.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/apache/incubator-teaclave/pull/379#event-3511817650