Rewrite ekiden runtime implementation (aka Fortanix SGX) #1531
Conversation
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
3 times, most recently
from
610e937 to
f8f1cf6
Compare
kostko
requested review from
pro-wh,
abukosek,
Yawning,
jberci,
peterjgilbert and
armaniferrante
| /// Dispatch a raw call to the node. | ||
| pub fn submit_tx_raw<C>(&self, call: C) -> BoxFuture<Vec<u8>> | ||
| where | ||
| C: Serialize, |
There was a problem hiding this comment.
if we were to serialize call outside this, either in call or an additional layer, would it save the compiler the trouble of emitting several specializations of this relatively large function?
kind of unbalanced that serializing call happens inside but deserializing the output happens outside
|
this PR also rearranges a lot of code. can you post a guide of what new code (roughly) corresponds to what old code? |
Sure. So roughly everything from common, storage, db, rpc, runtime (and maybe more) is now in |
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
from
f8f1cf6 to
baf8f27
Compare
|
The bigger change is that the IPC protocol now goes directly into the runtime instead of only to the worker. This means that some of the attestation stuff (AESM interaction) is now handled at the worker host. |
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
from
baf8f27 to
ab84ced
Compare
| ekiden-runtime = { path = "../runtime" } | ||
| serde = "1.0.71" | ||
| # TODO: Change to released version when 0.10.0 is released. | ||
| serde_cbor = { git = "https://github.com/pyfisch/cbor", rev = "114ecaeac53799d0bf81ca8d1b980c7c419d76fe" } |
There was a problem hiding this comment.
This revision is just the master at a specific point in time. The important PR that we need is pyfisch/cbor#67.
| pub mod transaction; | ||
|
|
||
| /// Boxed future type. | ||
| pub type BoxFuture<T> = Box<futures::Future<Item = T, Error = failure::Error> + Send>; |
There was a problem hiding this comment.
(me) check if we do the same thing elsewhere
|
|
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
2 times, most recently
from
59b6547 to
ed07194
Compare
| "github.com/oasislabs/ekiden/go/common/sgx/ias" | ||
| ) | ||
|
|
||
| //go:generate protoc --go_out=. aesm_proto.proto |
There was a problem hiding this comment.
While I understand why this lives here, I'd rather it lived with all the other protobuf files.
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
5 times, most recently
from
5c97bb5 to
e5449b2
Compare
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
3 times, most recently
from
c41ad76 to
792af83
Compare
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
from
843122c to
5128aa6
Compare
|
The OpenBSD project has songs for each release, this is the ekiden 0.3 one. |
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
4 times, most recently
from
c881a7c to
ed15809
Compare
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
3 times, most recently
from
23b15c9 to
c9ddbdc
Compare
| None => return Err(RAKError::NotConfigured.into()), | ||
| }; | ||
| let _authenticated_avr = avr::verify(&avr)?; | ||
| // TODO: Verify that the AVR has H(RAK) in report body. |
There was a problem hiding this comment.
ℹ️ downstream consumers will check our AVR. this would be a convenience sanity check
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
2 times, most recently
from
c4cc89a to
3e1a08f
Compare
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
4 times, most recently
from
6a04d1c to
2e374db
Compare
kostko
force-pushed
the
kostko/feature/fortanix-sgx
branch
from
2e374db to
3ff39a5
Compare
Closes #1364
Closes #96
Closes #1022
Closes #1235
Closes #167
Closes #1260
Closes #1222
Closes #52
See #1000 (comment)
See #1318
TODO
sgxscrate).cargo-elf2sgxsbased onftxsgx-runner-cargofromfortanix-sgx-tools(that one almost works, but runs the binary as well which is annoying).