On 2/3/21 5:57 AM, Jarkko Sakkinen wrote:
On Mon, Feb 01, 2021 at 09:26:52PM +0800, Tianjia Zhang wrote:
In the function sgx_create_enclave(), the direct assignment
operation of attributes_mask determines that the ioctl PROVISION
operation must be executed after the ioctl CREATE operation,
which will limit the flexibility of sgx developers.
Please write acronyms correctly. It's not 'sgx'. It's 'SGX'.
Who are the "sgx developers" and how do they benefit from this?
/Jarkko
It mainly refers to application developers based on SGX technology.
One of the benefits that this brings is that the PROVISION operation can
be called before or after the enclave is created, compared to the
previous PROVISION operation can only be executed after the enclave is
created.
Thanks,
Tianjia