Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.
1478 Discussions

Intel(R) Xeon(R) Silver 4314 CPU Whether it supports EPID

czj
Beginner
561 Views

I have completed the dcap test and completed the enclave test.

But running sgx-ra-sample faile, As shown below:

root@tec-191:~/sgx-ra-sample# ./run-client -d -v
+++ using default public key

---- Msg0 Details ----------------------------------------------------------
Extended Epid Group ID: 00000000
----------------------------------------------------------------------------
sgx_ra_get_msg1: 00004012


Server log:
Listening for connections on port 7777
Waiting for a client to connect...
Connection from 127.0.0.1
Waiting for msg0||msg1
protocol error reading msg0||msg1
error processing msg1
Waiting for a client to connect...

 

The following is the aesmd status:

root@tec-191:~/sgx-ra-sample# service aesmd status
● aesmd.service - Intel(R) Architectural Enclave Service Manager
     Loaded: loaded (/lib/systemd/system/aesmd.service; enabled; vendor preset: enabled)
     Active: active (running) since Wed 2022-10-19 16:19:08 CST; 21min ago
    Process: 35791 ExecStartPre=/opt/intel/sgx-aesm-service/aesm/linksgx.sh (code=exited, status=0/SUCCESS)
    Process: 35803 ExecStartPre=/bin/mkdir -p /var/run/aesmd/ (code=exited, status=0/SUCCESS)
    Process: 35804 ExecStartPre=/bin/chown -R aesmd:aesmd /var/run/aesmd/ (code=exited, status=0/SUCCESS)
    Process: 35805 ExecStartPre=/bin/chmod 0755 /var/run/aesmd/ (code=exited, status=0/SUCCESS)
    Process: 35806 ExecStartPre=/bin/chown -R aesmd:aesmd /var/opt/aesmd/ (code=exited, status=0/SUCCESS)
    Process: 35807 ExecStartPre=/bin/chmod 0750 /var/opt/aesmd/ (code=exited, status=0/SUCCESS)
    Process: 35808 ExecStart=/opt/intel/sgx-aesm-service/aesm/aesm_service (code=exited, status=0/SUCCESS)
   Main PID: 35809 (aesm_service)
      Tasks: 4 (limit: 613772)
     Memory: 2.8M
     CGroup: /system.slice/aesmd.service
             └─35809 /opt/intel/sgx-aesm-service/aesm/aesm_service

Oct 19 16:28:39 tec-191 aesm_service[35809]: [ADMIN]EPID Provisioning initiated
Oct 19 16:28:40 tec-191 aesm_service[35809]: The Request ID is 8b2fb5ccedc445e688c0447b21a3009e
Oct 19 16:28:41 tec-191 aesm_service[35809]: The Request ID is 8b6395c84ac04a4c9ff4915fdc245d5a
Oct 19 16:28:41 tec-191 aesm_service[35809]: [ADMIN]EPID Provisioning protocol error reported by Backend (6)
Oct 19 16:28:41 tec-191 aesm_service[35809]: [ADMIN]EPID Provisioning failed
Oct 19 16:38:49 tec-191 aesm_service[35809]: [ADMIN]EPID Provisioning initiated
Oct 19 16:38:50 tec-191 aesm_service[35809]: The Request ID is 4f26fd85dbc54cd5a7e912ab7a6fac73
Oct 19 16:38:51 tec-191 aesm_service[35809]: The Request ID is 5847e465d20a4b07bbc922568e6dbc58
Oct 19 16:38:51 tec-191 aesm_service[35809]: [ADMIN]EPID Provisioning protocol error reported by Backend (6)
Oct 19 16:38:51 tec-191 aesm_service[35809]: [ADMIN]EPID Provisioning failed

 

The CPU supports sgx.

BIOS Info: Inter (R) SGX ···························· Enabled

But the bios has no "SGX Launch Control Policy" option.

 

How can I handle the epid problem please? Does the CPU not support epid or does the bios not support it? Or what else.

 

 

 

0 Kudos
1 Solution
Sahira_Intel
Moderator
545 Views

Hi,

 

The Intel(R) Xeon(R) Silver 4314 CPU only has support for DCAP. More information on that at the bottom of this page where you will also find more information about DCAP. 

And visit this page for the DCAP product brief.

 

Sincerely,

Sahira

 

View solution in original post

0 Kudos
2 Replies
Sahira_Intel
Moderator
546 Views

Hi,

 

The Intel(R) Xeon(R) Silver 4314 CPU only has support for DCAP. More information on that at the bottom of this page where you will also find more information about DCAP. 

And visit this page for the DCAP product brief.

 

Sincerely,

Sahira

 

0 Kudos
czj
Beginner
532 Views

Thank you very much for your reply, I will complete SGX Remote Attendance based on dcap.

0 Kudos
Reply