From 02ff1726c5291773b1b814eeac5769f75e85853a Mon Sep 17 00:00:00 2001
From: Francisco J Silva <franjs.francisco@gmail.com>
Date: Tue, 14 Jan 2025 14:02:00 +0000
Subject: [PATCH] adjusting manifest template

---
 tee-worker/omni-executor/omni-executor.manifest.template | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/tee-worker/omni-executor/omni-executor.manifest.template b/tee-worker/omni-executor/omni-executor.manifest.template
index c1b702710d..24e867ed0d 100644
--- a/tee-worker/omni-executor/omni-executor.manifest.template
+++ b/tee-worker/omni-executor/omni-executor.manifest.template
@@ -21,6 +21,7 @@ fs.mounts = [
   { path = "/data", uri = "file:data", type="encrypted", key_name="{{'_sgx_mrsigner' if env.get('SGX', '0') == '1' else 'fake_sgx_mrsigner'}}" },
   { path = "/etc", uri = "file:/etc" },
   { path = "/usr", uri = "file:/usr" },
+  { path = "/storage_db", uri = "file:storage_db" },
 ]
 
 sgx.debug = true
@@ -39,6 +40,10 @@ sgx.trusted_files = [
   "file:/usr/lib/ssl/certs/ca-certificates.crt",
 ]
 
+sgx.allowed_files = [
+  "file:storage_db/",
+]
+
 # The maximum number of threads in a single process needs to be declared in advance.
 # You need to account for:
 # - one main thread
@@ -54,4 +59,4 @@ sgx.remote_attestation = "dcap"
 loader.insecure__use_cmdline_argv = true
 loader.insecure__use_host_env = true
 
-fs.insecure__keys.fake_sgx_mrsigner = "ffeeddccbbaa99887766554433221100"
\ No newline at end of file
+fs.insecure__keys.fake_sgx_mrsigner = "ffeeddccbbaa99887766554433221100"