On (the Lack of) Code Confidentiality in Trusted Execution Environments