SKALE-3067-cleanup-sgx

4ec645fc · kladko · c057be73 · 4ec645fc · 4ec645fc
Unverified Commit 4ec645fc authored Aug 10, 2020 by kladko
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 4 deletions

secure_enclave.c secure_enclave/secure_enclave.c +4 -3

secure_enclave.config.xml secure_enclave/secure_enclave.config.xml +1 -1

No files found.
--- a/secure_enclave/secure_enclave.c
+++ b/secure_enclave/secure_enclave.c
@@ -981,7 +981,7 @@ void trustedGetBlsPubKey(int *errStatus, char *errString, uint8_t *encryptedPriv
    *errStatus = UNKNOWN_ERROR;
-    char skey_hex[ECDSA_SKEY_LEN];
+    SAFE_CHAR_BUF(skey_hex,ECDSA_SKEY_LEN);
    uint32_t len = key_len;
@@ -1015,7 +1015,8 @@ void trustedGenerateSEK(int *errStatus, char *errString,
    *errString = 0;
    *errStatus = UNKNOWN_ERROR;
-    uint8_t SEK_raw[SGX_AESGCM_KEY_SIZE];
+    SAFE_CHAR_BUF(SEK_raw,SGX_AESGCM_KEY_SIZE);
    sgx_read_rand(SEK_raw, SGX_AESGCM_KEY_SIZE);
    uint32_t hex_aes_key_length = SGX_AESGCM_KEY_SIZE * 2;
@@ -1050,7 +1051,7 @@ void trustedSetSEK(int *errStatus, char *errString, uint8_t *encrypted_SEK, uint
-    uint8_t aes_key_hex[SGX_AESGCM_KEY_SIZE * 2];
+    SAFE_CHAR_BUF(aes_key_hex,SGX_AESGCM_KEY_SIZE * 2);
    memset(aes_key_hex, 0, SGX_AESGCM_KEY_SIZE * 2);
    sgx_status_t status = sgx_unseal_data(

--- a/secure_enclave/secure_enclave.config.xml
+++ b/secure_enclave/secure_enclave.config.xml
@@ -2,7 +2,7 @@
 <ProdID>0</ProdID>
 <ISVSVN>0</ISVSVN>
 <StackMaxSize>0x1000000</StackMaxSize>
- <HeapMaxSize>0x100000000</HeapMaxSize>
+ <HeapMaxSize>0x10000000</HeapMaxSize>
 <TCSNum>128</TCSNum>
 <TCSMaxNum>128</TCSMaxNum>
 <TCSMinPool>128</TCSMinPool>