>> Do you think the processes sharing the same enclave need to be killed, >> even they had not touched the EPC page with hardware error? >> Any ideas are welcome. > > I do not think the patch set is going to wrong direction. This discussion > was just missing from the cover letter. I was under the impression that when an enclave page triggers a machine check the whole enclave is (somehow) marked bad, so that it couldn't be entered again. Killing other processes with the same enclave mapped would perhaps be overkill, but they are going to find that the enclave is "dead" next time they try to use it. -Tony
