On 23/04/20 19:42, Paraschiv, Andra-Irina wrote: >> >>>> - the initial CPU state: CPL0 vs. CPL3, initial program counter, etc. > > The enclave VM has its own kernel and follows the well-known Linux boot > protocol, in the end getting to the user application after init finishes > its work, so that's CPL3. CPL3 is how the user application run, but does the enclave's Linux boot process start in real mode at the reset vector (0xfffffff0), in 16-bit protected mode at the Linux bzImage entry point, or at the ELF entry point? Paolo
