	US 12,235,951 B2
	Uniform enclave interface
Matthew Gingell, Woodinville, WA (US); Peter Gonda, Seattle, WA (US); Alexander Thomas Cope, Seattle, WA (US); Sergey Karamov, Redmond, WA (US); Keith Moyer, Kirkland, WA (US); Uday Ramesh Savagaonkar, Redmond, WA (US); and Chong Cai, Kirkland, WA (US)
Assigned to Google LLC, Mountain View, CA (US)
Filed by Google LLC, Mountain View, CA (US)
Filed on Jan. 31, 2024, as Appl. No. 18/428,842.
Application 18/428,842 is a continuation of application No. 17/950,205, filed on Sep. 22, 2022, granted, now 11,947,662.
Application 17/950,205 is a continuation of application No. 17/046,593, granted, now 11,494,485, issued on Nov. 8, 2022, previously published as PCT/US2018/042625, filed on Jul. 18, 2018.
Claims priority of provisional application 62/664,438, filed on Apr. 30, 2018.
Prior Publication US 2024/0169054 A1, May 23, 2024
Int. Cl. G06F 21/53 (2013.01); G06F 21/12 (2013.01); G06F 21/57 (2013.01); G06F 21/62 (2013.01); G06F 21/74 (2013.01)

CPC G06F 21/53 (2013.01) [G06F 21/12 (2013.01); G06F 21/57 (2013.01); G06F 21/6245 (2013.01); G06F 21/74 (2013.01)]

18 Claims

1. A method for handling file operations for files of an enclave stored in memory of a host computing device, the method comprising:

receiving, by one or more processors of the host computing device, a request from a function in an enclave to perform a file operation at a file path, wherein the file path indicates that the file is in a host access domain that handles non-sensitive data available and modifiable by other untrusted software running on the host computing device;

delegating, by the one or more processors, the file operation to the host computing device;

translating, by the one or more processors, a value of a flag of the file path into a native value of the host computing device for the flag; and

forwarding, by the one or more processors, the file path to an enclave manager outside the enclave for further forwarding to host software of the host computing device.