Intel Sends Out Linux Support For SGX Enclaves Support A 40th Time

Written by Michael Larabel in Intel on 8 November 2020 at 06:26 AM EST. 6 Comments
INTEL
Intel didn't manage to get their Software Guard Extensions (SGX) support merged for the current Linux 5.10 LTS kernel cycle and it's still up in the air if it will be pulled in the near-term for providing the mainline kernel with SGX enclaves support.

SGX enclaves support is about providing protected regions of code/data from unauthorized access or modification. SGX support has been around since Skylake and continues to be built upon including with upcoming Ice Lake Xeon servers. But getting mainline support for SGX has been quite an effort now taking years and as of this week up to forty rounds of code review.

SGX security woes, the complexity of the implementation, and lack of upstream interest for a number of reasons has led to this Intel SGX foundations support for the mainline Linux kernel taking quite a while to get squared away. There are many public clouds and enterprises using SGX today through manually loading Intel's code into their distribution / operating system configuration.

The SGX kernel code with the v40 patches are now explicitly using the GPL 2.0 license as previously they also claimed to be 3-clause BSD licensed. But as pointed out during the code review, SGX is using GPL-only header files and thus a license mismatch if it's also supposed to be BSD licensed. With still going years to get the code upstreamed, this round of patches had to update the copyright years with some of them still reflecting "2016 - 2018" years.

The SGX v40 Linux patches also have a number of low-level fixes and other code improvements. More details on the SGX v40 Linux kernel patches via the mailing list. We'll see in December if SGX gets pulled into the Linux 5.11 merge window or if the Intel developers will keep working on pushing it to upstream into 2021.
6 Comments
Related News
Intel Talks Up Their Latest Compiler Toolchain Enhancements For AVX10.1, AMX & More
Rework For Intel CPU Model Handling To Land With Linux 6.10
Linux 6.10 Adding Intel Low-Latency Hint To Aggressively Boost GT Frequency For GPU Compute
Intel Releases OpenVINO 2024.1 With More Gen AI & LLM Features
Intel ANV Vulkan Driver Enables VK_KHR_shader_float_controls2
Intel Has Many Improvements For The Xe Graphics Driver In Linux 6.10
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
systemd Rolling Out "run0" As sudo Alternative
Linux Mint Looks To Fork More GNOME Software, Make XApp More Independent
Microsoft Updates Cascadia Code: Its Open-Source Font For Developers
Microsoft Open-Sources MS-DOS 4.0 Under MIT License
Systemd 256-rc1 Brings A Huge Number Of New Features
NVIDIA Developer Opens Feature Pull Request For Open-Source NVK Driver
Rust-Based Coreutils 0.0.26 Increases Compatibility With GNU Coreutils
Ubuntu 24.04 LTS Downloads Now Available