If you are on a platform that supports SGX, you can enable HW support by:
- Enabling SGX support as described above
- Installing the Intel SGX Driver and the Intel SGX SDK and make sure that
/dev/isgxappears. - Start the docker with SGX device support:
{% code overflow="wrap" lineNumbers="true" %}
docker run -it -v $(pwd):/root/work --device /dev/isgx integritee/integritee-dev:0.1.12 /bin/bash{% endcode %}
- Start the aesm service inside the docker:
{% code overflow="wrap" lineNumbers="true" %}
LD_LIBRARY_PATH=/opt/intel/sgx-aesm-service/aesm/ /opt/intel/sgx-aesm-service/aesm/aesm_service &{% endcode %}
If you run the Hardware Mode on a platform that does not support SGX or has it misconfigured, you get the following error from the process:
{% code overflow="wrap" lineNumbers="true" %}
*** Start the enclave
[2019-05-15T05:15:03Z ERROR integritee::enclave_wrappers] [-] Init Enclave Failed SGX_ERROR_NO_DEVICE!
{% endcode %}