Community
cancel
Showing results for 
Search instead for 
Did you mean: 
SSuma1
Beginner
1,794 Views

SGX Feature Control MSR in NUC 7CJYH Bios

Hi,

NUC 7CJYH supports Intel SGXv2. However, to make use of the Launch Control Feature in SGXv2, the Bios needs to enable Bit 17 of IA32_FEATURE_CONTROL MSR (See Chapter 42 of SDM Vol 3: https://www.intel.co.uk/content/dam/www/public/us/en/documents/manuals/64-ia-32-architectures-softwa... https://www.intel.co.uk/content/dam/www/public/us/en/documents/manuals/64-ia-32-architectures-softwa...

https://www.intel.co.uk/content/dam/www/public/us/en/documents/manuals/64-ia-32-architectures-softwa... https://www.intel.co.uk/content/dam/www/public/us/en/documents/manuals/64-ia-32-architectures-softwa...

)

I wanted to ask if Intel will update the Visual Bios to enable/disable this (or if there's an open source Bios which I can modify myself.) Without BIOS support this highly sought after feature is completely useless, even if the processor supports SGXv2.

Thanks

Suman

0 Kudos
3 Replies
n_scott_pearson
Super User Retired Employee
269 Views

Intel does not open source their BIOS. Further, their BIOS is protected against tampering.

Visual BIOS is a program to present and support the modification of BIOS configuration parameters. Other than that, it does not have anything to do with BIOS POST processing or hardware initialization.

Intel Customer Support will need to pass on this request to the development team for consideration.

...S

SSuma1
Beginner
269 Views

Understood.

Can someone from Intel Customer Support relay this as a feature request to the right team. If it helps, please talk to Jarkko Sakkinen <</span>mailto:jarkko.sakkinen@linux.intel.com jarkko.sakkinen@linux.intel.com> who is an Intel Engineer who wrote the Linux Kernel driver for SGX. He can probably explain the significance of this feature far better than I can.

Thanks

Suman

n_scott_pearson
Super User Retired Employee
269 Views

I am being told (without details) that the SGX-FLC feature will be supported in the production JY BIOS when it is ready (but when that is I have no idea).

...S

Reply