SGXSGIN returns "Invalid blob size"

Question

SGXSGIN returns "Invalid blob size"

mbailleu opened this issue 7 years ago · 8 comments

I am trying to compile the kernel. However, the compilation fails at the signing process:

  SGXSIGN drivers/platform/x86/intel_sgx/le/enclave/sgx_le.ss
Invalid blob size 38064

Answer 1 · 2018-03-15T14:24:53.000Z

The signing utility is complaining that the size of the launch enclave is not a multiple of 4k. Beyond that I can't provide much help as I'm not intimately familiar with the LE build flow. Have you tried cleaning and rebuilding?

@jsakkine-intel Have you seen this issue before?

As a workaround, if it still fails after a rebuild, you can disable the userspace SGX driver, i.e. CONFIG_INTEL_SGX=n. The userspace driver is not needed for KVM SGX support.

Answer 2 · 2018-03-16T12:54:39.000Z

I got it build now, thanks.
The error occurs if you have set:

CONFIG_TRACE_BRANCH_PROFILING=y
CONFIG_PROFILE_ALL_BRANCHES=y

Maybe you could add it to the INTEL_SGX dependence.

Answer 3 · 2018-03-19T21:38:11.000Z

Do you build with CONFIG_RETPOLINE? It is not yet supported. That could potentially cause issues.

Answer 4 · 2018-03-20T10:48:05.000Z

Can you submit the exact .config where this failure occurs?

Answer 5 · 2018-03-20T16:23:07.000Z

config.gz
However, to reproduce the error I had to do a clone of the repo, as the error did not reappear after a make clean

Answer 6 · 2018-03-21T09:42:41.000Z

I'm sorry. I missed your earlier comment about the config options. I'll try to reproduce this error locally. Thank you.

Answer 7 · 2018-03-22T10:09:48.000Z

Tried with https://github.com/jsakkine-intel/linux-sgx. Does not reproduce. Could be that the issue was fixed in subsequential patch set after v5. Which branch I should test from https://github.com/sean-jc/linux.git?

Answer 8 · 2018-07-03T20:29:53.000Z

Closing this issue as the latest release does not contain an in-kernel launch enclave, i.e. the code in question no longer exists.