wasm-micro-runtime icon indicating copy to clipboard operation
wasm-micro-runtime copied to clipboard
verified publisher icon bytecodealliance

Issues in Running WAMR SGX in Azure using DCAP drivers

Open dzobbe opened this issue 3 years ago • 4 comments

Hello everyone,

I am having issues in deploying the WAMR SGX application in Azure using the DCAP driver. I am getting this error:

"Enclave not authorized to run, .e.g. provisioning enclave hosted in app without access rights to /dev/sgx_provision. You need add the user id to group sgx_prv or run the app as root."

Any idea on how to address this?

dzobbe avatar Apr 11 '22 12:04 dzobbe

Hi, it mentions that "You need add the user id to group sgx_prv or run the app as root.", could you please try adding you user id the the sgx_prv group:

sudo usermod -a -G sgx_prv <your_user_id>

wenyongh avatar Apr 12 '22 05:04 wenyongh

Yeah that was the first thing I tried but it didn't work

dzobbe avatar Apr 12 '22 10:04 dzobbe

I am running as root in the container. And other SGX apps in the same container work just fine. If I run the container in a desktop SGX machine without the DCAP driver th sgx-wasm application runs fine.

dzobbe avatar Apr 12 '22 10:04 dzobbe

Not known what the root cause is, may be you can get help from below: https://github.com/intel/linux-sgx

wenyongh avatar Apr 12 '22 13:04 wenyongh