Support the latest DCAP driver.

deislabs / mystikos

Tools and runtime for launching unmodified container images in Trusted Execution Environments

143 stars 49 forks source link

Support the latest DCAP driver. #787

Open qinkunbao opened 3 years ago

qinkunbao commented 3 years ago

mystikos only supports Intel DCAP driver version 1.7. The latest Intel DCAP driver is 1.11.

https://github.com/deislabs/mystikos/blob/91685d015087381d2daf83e7449c12a41a23420b/prereqs/Makefile#L7

Do you have any plan to support the latest version of Intel DCAP (dev/sgx_enclave and /dev/sgx_provision)?

radhikaj commented 3 years ago

Are you using Ubuntu 18.04 or Ubuntu 20.04? We test using the versions of drivers available for the Azure canonical images. Azure Canonical Ubuntu 18.04 uses 5.4 kernel. On Ubuntu 20.04, Azure Canonical has 5.8 kernel and will get the 5.11 kernel in the future and will have the latest DCAP driver. Open Enclave is on 1.10.103.1 for Ubuntu 18.04

qinkunbao commented 3 years ago

Thank you for your reply. I am using Ubuntu 18.04. The DCAP driver has been merged into the kernel (5.11 or higher).

https://github.com/intel/SGXDataCenterAttestationPrimitives/blob/master/driver/linux/README.kernel.md#transition-from-dcap-driver-to-kernel