Intel SGX Linux Support Bits Revved For A Twenty-Second Time

Written by Michael Larabel in Intel on 4 September 2019 at 06:47 PM EDT. Add A Comment
INTEL
The Software Guard Extensions (SGX) support for the Linux kernel around the memory enclaves continues to be worked on by the open-source Intel team and is now up to their twenty-second revision but it's not clear that this code is ready yet for the upcoming Linux 5.4 cycle.

Intel has worked an excruciatingly long time on these Linux patches with the v21 patches having come out in mid-July. Now at the start of September is v22 for these patches that provide support for hardware-protected/encrypted memory regions with SGX enclaves.

This Intel SGX bring-up in Linux and supporting the Memory Encryption Engine has been going on since shortly after the first Skylake CPUs surfaced where these processors introduced the initial support for Software Guard Extensions.

Some kernel developers have been apprehensive to the patches at least in their earlier form and there have been various SGX attack vectors / vulnerabilities to be exposed over the years, but it looks like eventually these patches will get in with Intel's persistence. However, given the Linux 5.4 merge window is expected in just over one week's time while next week is the Linux Kernel Summit that will limit the bandwidth of upstream kernel developers to review the 24 patches (5k+ lines of code), I'd wager that it won't land until at least Linux 5.5.

The Intel SGX Foundations v22 patches have a lot of fixes and a lot of internal code restructuring to make the SGX implementation more robust. More details via this patch series.
Add A Comment
Related News
Intel Lands "Round Robin Strict" Driver Optimization For Helping Battlemage/Xe2
Intel Looking To Raise SPIR-V Backend To Becoming An Official LLVM Target
Intel Panther Lake & Clearwater Forest Power Management Patches For Linux 6.14
Intel Begins Readying Graphics Driver Changes For The Linux 6.14 Kernel
UMD Direct Submission "Proof Of Concept" For The Intel Xe Linux Driver
Intel Linux Display Driver Being Adapted For DRM Panic "Blue Screen of Death" Support
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features