Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

SGX DCAP Driver

DontKillRobots
Beginner
303 Views

Is this still the last guide on installing SGX DCAP and getting it provisioned?
https://www.intel.com/content/www/us/en/developer/articles/guide/intel-software-guard-extensions-data-center-attestation-primitives-quick-install-guide.html

If so there dcap driver in this document still the latest? Its broken on linux kernals >5.7. Which seems odd. Also your official downloads page only has a windows driver for SGX DCAP. No Linux which also seems odd.

There is some other outdated information in this guide. As far as i can tell the part about needing node 14 for the PCCS is outdated. I can actually only get this step to work on Node 18.17.

Please point me in the direction of any relevant documentation here

edit: Another thing that is missing from this guide that im pretty sure needs to happen is Registration of the SGX chip right? Or is this an autodated thing that needs to be done

0 Kudos
1 Reply
Scott_R_Intel
Employee
230 Views

Hello.

 

As you found, that article is outdated and will soon be removed.  Please see our latest SGX SW Install Guide for Linux on how to install all necessary components for SGX.

As for the required SGX kernel module/driver, it was upstreamed and has been available in-kernel since v5.11.  So, just make sure your distro of choice has that version or newer kernel, and the SGX kernel module will just work out of the box.

Platform registration is required for any 3rd, 4th, or 5th Gen Xeon Scalable CPUs (codenames Ice Lake Server, Sapphire Rapids, and Emerald Rapids) or any CPU based on those same cores (ie. Xeon-D (ICX-D) 1700, 1800, 2700, 2800 series).  You can find more information about platform registration in our SGX DCAP Multipackage SW Doc or in our TDX Enabling Guide (TDX requires the same platform registration step as SGX).

The SGX SW Install Guide for Linux as well as the TDX Enabling Guide both also talk about PCCS setup (again, a common requirement of both SGX and TDX).

 

Regards.

0 Kudos
Reply