Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.
1453 Discussions

Thread handling in SGX

Anandakumar
New Contributor II
‎06-24-2021 02:35 AM
1,710 Views
Solved Jump to solution

Hello,

 

This is an extension of previous thread : https://community.intel.com/t5/Intel-Software-Guard-Extensions/SGX-Threads-behavior/td-p/1290722/jump-to/first-unread-message

 

I need clarifications on few thread related topics,

 

1. Only N number of simultaneous threads can run in SGX enclave in a N core machine because each thread will be binded to a physical core.
TCS NUM( Thread Control Structure ) will decide how many threads can spawn in the SGX Enclave. Lets say M (M>N) is set as TCSNUM the N thread can run simultaneouly and the remaining M-N threads will have to wait for their schedule.

Is my understanding correct? Can we have more number of TCS than the number of cores?


2. Regarding the TCSPolicy Binded/Non-binded mode. Give me some examples that explains when to use either of them.

 

Thanks

Anand

0 Kudos
1 Solution
JesusG_Intel
Moderator
‎06-24-2021 05:34 PM
1,692 Views
Solved Jump to solution

Hello Anand,


  1. YES. You can configure a higher TCS_NUM than the number of logical processors on a system.
  2. TCS_POLICY causes confusion because there are 2 aspects related to it, which might not be clearly explained in our documentation.

 

  • Trusted (Enclave component):
    • Unbinding policy (1): Thread Local Storage (TLS) area for each Thread Context (TCS) is reinitialized on every root ECALL.
    • Binding policy (0): Thread Local Storage (TLS) is not initialized on every ECALL.
  • Untrusted (loader component):
    • Unbinding policy (1): On every root ECALL, the uRTS finds the first available TCS and assigns said TCS to the untrusted thread.
    • Binding policy (0): The uRTS binds the untrusted thread to a TCS.

As long as the untrusted thread is alive, the TCS cannot be used for another thread.

When an application creates more threads than TCSes and uses this policy you get SGX_ERROR_OUT_OF_TCS.

 

Binding was the default policy in the initial versions of the SGX SDK.

Then we realized that developers could run into issues with binding policy if they weren’t careful using thread synchronization functions.


For that reason, we switched the default policy to unbinding (TCS_POLICY 1).


The binding policy (TCS_NUM 0) is useful if an enclave requires preserving TLS across root ECALLs.

However, we are not aware of any use case that requires this feature.


In general, use the current default (unbinding - TCS_POLICY 1).


Sincerely,

Jesus G.

Intel Customer Support


View solution in original post

0 Kudos
Copy link

Link Copied

2 Replies
JesusG_Intel
Moderator
‎06-24-2021 05:34 PM
1,693 Views
Solved Jump to solution

Hello Anand,


  1. YES. You can configure a higher TCS_NUM than the number of logical processors on a system.
  2. TCS_POLICY causes confusion because there are 2 aspects related to it, which might not be clearly explained in our documentation.

 

  • Trusted (Enclave component):
    • Unbinding policy (1): Thread Local Storage (TLS) area for each Thread Context (TCS) is reinitialized on every root ECALL.
    • Binding policy (0): Thread Local Storage (TLS) is not initialized on every ECALL.
  • Untrusted (loader component):
    • Unbinding policy (1): On every root ECALL, the uRTS finds the first available TCS and assigns said TCS to the untrusted thread.
    • Binding policy (0): The uRTS binds the untrusted thread to a TCS.

As long as the untrusted thread is alive, the TCS cannot be used for another thread.

When an application creates more threads than TCSes and uses this policy you get SGX_ERROR_OUT_OF_TCS.

 

Binding was the default policy in the initial versions of the SGX SDK.

Then we realized that developers could run into issues with binding policy if they weren’t careful using thread synchronization functions.


For that reason, we switched the default policy to unbinding (TCS_POLICY 1).


The binding policy (TCS_NUM 0) is useful if an enclave requires preserving TLS across root ECALLs.

However, we are not aware of any use case that requires this feature.


In general, use the current default (unbinding - TCS_POLICY 1).


Sincerely,

Jesus G.

Intel Customer Support


0 Kudos
Copy link
JesusG_Intel
Moderator
‎06-28-2021 01:57 PM
1,673 Views
Solved Jump to solution

This thread has been marked as answered and Intel will no longer monitor this thread. If you want a response from Intel in a follow-up question, please open a new thread.


0 Kudos
Copy link
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.