Re: x86/sgx: uapi change proposal
From: Jarkko Sakkinen
Date: Thu Dec 20 2018 - 05:32:14 EST
On Wed, Dec 19, 2018 at 06:58:48PM -0800, Andy Lutomirski wrote:
> Can one of you explain why SGX_ENCLAVE_CREATE is better than just
> opening a new instance of /dev/sgx for each encalve?
I think that fits better to the SCM_RIGHTS scenario i.e. you could send
the enclav to a process that does not have necessarily have rights to
/dev/sgx. Gives more robust environment to configure SGX.
/Jarkko