# Licensed to the Apache Software Foundation (ASF) under one # or more contributor license agreements. See the NOTICE file # distributed with this work for additional information # regarding copyright ownership. The ASF licenses this file # to you under the Apache License, Version 2.0 (the # "License"); you may not use this file except in compliance # with the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, # software distributed under the License is distributed on an # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY # KIND, either express or implied. See the License for the # specific language governing permissions and limitations # under the License. SGX_SDK ?= /opt/sgxsdk RUST_SGX_SDK ?= /opt/rust-sgx-sdk SGX_MODE ?= SIM DEBUG ?= true NUM_THREADS ?= 4 TVM_DIR ?= $(shell git rev-parse --show-toplevel) export sgx_edger8r := $(SGX_SDK)/bin/x64/sgx_edger8r sgx_enclave_signer := $(SGX_SDK)/bin/x64/sgx_sign ifneq ($(SGX_MODE), HW) sgx_sim := _sim endif urts_library_name := sgx_urts$(sgx_sim) trts_library_name := sgx_trts$(sgx_sim) tservice_library_name := sgx_tservice$(sgx_sim) uservice_library_name := sgx_uae_service$(sgx_sim) pkg_cflags := -std=c++11 -fPIC \ -I$(SGX_SDK)/include \ -I$(TVM_DIR)/include \ -I$(TVM_DIR)/dlpack/include \ -I$(TVM_DIR)/dmlc-core/include pkg_ldflags := -L$(TVM_DIR)/build -ltvm_runtime ifneq ($(DEBUG), false) debug := debug enclave_cflags += -Og -g pkg_cflags += -Og -g else debug := release enclave_cflags += -O2 pkg_cflags += -O2 endif build_dir := build enclave_cflags := \ -I$(SGX_SDK)/include \ -I$(SGX_SDK)/include/tlibc \ -I$(SGX_SDK)/include/stdport \ -I$(SGX_SDK)/include/epid \ -I$(TVM_DIR)/include \ -I$(TVM_DIR)/dlpack/include \ -I$(TVM_DIR)/dmlc-core/include enclave_ldflags :=\ -L$(build_dir) -L$(TVM_DIR)/build \ -Wl,--no-undefined -nostdlib -nodefaultlibs -nostartfiles -L$(SGX_SDK)/lib64\ -Wl,--whole-archive -l$(trts_library_name) -Wl,--no-whole-archive\ -Wl,--start-group\ -lsgx_tstdc -lsgx_tstdcxx -lsgx_tcxx -lsgx_tcrypto -lsgx_tkey_exchange -l$(tservice_library_name)\ -lenclave -ltvm_t\ -Wl,--end-group\ -Wl,-Bstatic -Wl,-Bsymbolic -Wl,--no-undefined\ -Wl,-pie,-eenclave_entry -Wl,--export-dynamic\ -Wl,--defsym,__ImageBase=0 -Wl,--gc-sections\ -Wl,--version-script=enclave/enclave.lds .PHONY: enclave clean enclave: $(build_dir)/enclave.signed.so $(build_dir)/enclave.signed.so: $(build_dir)/enclave.so build/enclave_config.xml enclave/enclave.pem $(sgx_enclave_signer) sign -key enclave/enclave.pem -enclave $< -out $@ -config build/enclave_config.xml enclave/enclave.pem: curl -sSo $@ 'https://gist.githubusercontent.com/nhynes/8a2d80068a92e672f8b0b7d710ceb404/raw/2d5ae5fbe83198ede49465fdc6535065e093543b/tvm_sgx_demo.pem' build/enclave_config.xml: enclave/enclave_config.xml.in cpp $^ -P -o $@ -DNUM_THREADS=$$(( $(NUM_THREADS) + 1 )) $(build_dir)/enclave.so: $(build_dir)/libenclave.a $(TVM_DIR)/build/libtvm_t.a $(CXX) $< -o $@ $(enclave_ldflags) $(enclave_cflags) -ltvm_t $(build_dir)/libenclave.a: enclave/target/x86_64-unknown-linux-sgx/$(debug)/libmodel_enclave.a @mkdir -p $(@D) @cp $< $@ enclave/target/x86_64-unknown-linux-sgx/$(debug)/libmodel_enclave.a: enclave/**/* $(MAKE) -C enclave clean: $(MAKE) -s -C enclave clean rm -rf build