This is my first enclave for testing and educational purpoce. It is supposed to generate a library that does a simple adding into an intel SGX environment.
This repo contains 2 branches:
- The
enclave_onlybranch that shows only how an enclave is built and signed. - The
masterbranch that contains the how build sign and link your enclave with an application.
You will need to run the following command:
makeThe makefile generates the keys for enclave signing in ~/.sgx directory. By default it will generate the ~/.sgx/MyFirstEnclave.pem key. You can modify the path where the key will be stored by modifying the KEY_STORAGE_PATH and KEY_PRIVATE_FILE and KEY_PUBLIC_FILE accorditly. The following table explains the valies of the variables.
| Variable | Use |
|---|---|
KEY_STORAGE_PATH |
The directory where the keys will be stored. |
KEY_PRIVATE_FILE |
The private key that will be generated and will be used to sign the enclave. |
KEY_PUBLIC_FILE |
The public key that will be used from others to verify the signed enclave. |
As far I discovered the application you can compile an enclave by doing the following compile chain:
- A GNU\Linux Distribution with the sgx driver and the sdk & psw libraries
- As mentioned on the links above to export the correct source.
- The
gcc,g++,makeandopenssltools. - Git lfs for documentation (optionally)