Please see README for how to install Mystikos or build it from source code.
Disclaimer: Mystikos's support for dotnet and C# is incomplete. We are working towards complete C# support.
The most tested dotnet runtime version by us is the 3.1 LTS release. We recommend users to develop/migrate their applications on/to this version to work with Mystikos.
In this example, we take numbers from command line and output the sum.
C# requires us to create a project first. First we need to install dotnet
SDK 3.1 with sudo apt install dotnet-sdk-3.1. Then run the command:
dotnet new console -o sum
After we have the folder sum ready, open Program.cs in it, and replace
its content with the following code:
using System;
using System.Collections.Generic;
namespace sum
{
class Program
{
static void Main(string[] args)
{
long sum = 0;
List<long> numbers = new List<long>();
for (int i = 0; i < args.Length; i++)
{
numbers.Add(Int64.Parse(args[i]));
sum += numbers[numbers.Count - 1];
}
Console.WriteLine($"Hello World from C#! Sum is {sum}\n");
}
}
}You can build and run the program with the following command to make sure it's correct:
cd sum
dotnet build -o build
dotnet build/sum.dll 1 2 3
The expected outputs is a welcome message and the sum of the command line arguments:
Welcome to C#! Sum is 6
We provide a docker file for building and running the application as follows.
Note this is a multi-stage dockerfile as dotnet SDK is only required for
building. Running the application requires dotnet runtime, a much smaller
package. We can use it in the run stage to save space.
# stage 1: build
FROM mcr.microsoft.com/dotnet/core/sdk:3.1-buster AS build
WORKDIR /app
COPY . .
RUN dotnet publish -o publish
# stage 2: run
FROM mcr.microsoft.com/dotnet/core/aspnet:3.1-bionic
WORKDIR /app
COPY --from=build /app/publish .
ENTRYPOINT [ "dotnet", "/app/sum.dll", "1", "2", "3" ]
You can save the docker file to the sum folder, and build and run the
container app with the following command:
docker run $(docker build -q .)
We use a script to take the same docker file and generates an
app folder appdir for preparing the program to be run with Mystikos.
myst-appbuilder Dockerfile
appdir contains the typical Linux root file system, such as /usr,
/home, /bin, etc. It also contains our application under /app.
The dotnet runtime is also included.
myst mkcpio appdir rootfs
myst exec-sgx --memory-size 512m rootfs /usr/bin/dotnet /app/sum.dll 1 2 3On the last command, we pass in --memory-size 512m to tell Mystikos to
operate on this much heap memory otherwise dotnet runtime would fail on
initialization.
We also pass in the full path to the dotnet executable and the application
dll to avoid ambiguity from duplicated file names.
The expected outputs, not surprisingly, is Welcome to C#! Sum is 6
Congratulations! You have written a confidential application in a high level programming language, and you have launched it, together with a managed runtime, within a TEE.
To run an application with Mystikos in release or production mode, please see packaging.
For more complex dotnet programs that are already working with Mystikos, please see: