Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Keep (somewhat) uptodate with latest SGX SDK and SSL releases #411

Open
mbrandenburger opened this issue Jul 20, 2020 · 2 comments
Open

Keep (somewhat) uptodate with latest SGX SDK and SSL releases #411

mbrandenburger opened this issue Jul 20, 2020 · 2 comments
Assignees
@g2flyer
Milestone
FPC 1.1

Comments

@mbrandenburger
Copy link
Contributor

Description
Upgrade the SGX SDK and SSL used in FPC. Currently, FPC uses the Intel SGX SDK v2.6 for linux and SSL for SGX SDK v2.4.1.

Most recent available version of the SGX SDK is v2.10. See https://github.com/intel/linux-sgx/releases and https://github.com/intel/linux-sgx/releases

Link to feature or bug

Link to dependent issues
@mbrandenburger mbrandenburger added this to the MVP milestone Jul 20, 2020
@g2flyer g2flyer changed the title Upgrade SGX SDK and SSL Keep (somewhat) uptodate with latest SGX SDK and SSL releases Jul 20, 2020
@g2flyer g2flyer modified the milestones: MVP, July/August Milestone Jul 20, 2020
@g2flyer g2flyer mentioned this issue Jul 24, 2020
Merged
@g2flyer g2flyer modified the milestones: July/August Milestone, MVP Aug 11, 2020
@g2flyer g2flyer mentioned this issue Nov 12, 2020
Merged
@g2flyer
Copy link
Contributor

g2flyer commented Nov 12, 2020
edited

Intel just released v2.12. The main noteworthy feature is that now Ubuntu 20.04 is also supported. Nothing else noteworthy which should push to upgrade. In some quick tests, make for flow-refactoring works with a 2.12 machine; running make on cr2.0.0 will fail when running the test in demo/chaincode/fpc, but that seems to be an issue which also happens with earlier sgx versions.

A few caveats:

  • apt update -- which (semi-)automagically upgrades to the latest sgx packages -- can result in a broken upgrade, a simple apt --fix-broken install does provide remedy, though.
  • it seems on FLC-enabled NUCs, you now need the dcap driver (now as version 1.36.2), the old-style driver, (now as version 2.11) does not seem to work anymore. Note, though, that download site provides both.
  • there is also a newer version of sgxssl ( lin2.11_1.1.1.g vs currently used lin2.10_1.1.1.g). Nothing important for us to upgrade; in fact right now upgrade wouldn't work as some pthread stuff changed which make pdo crypto fail on that version.
  • regarding 20.04, a quick fix (PR Dockerfile fix for 20.04 #463, matching a similar change for PDO) makes all our docker images build, just do DOCKER_BUILD_OPTS="--build-arg SGX=2.12 --build-arg UBUNTU_VERSION=20.04 --build-arg UBUNTU_NAME=focal" make -C utils/docker.
    In a quick test on my personal (SKL) NUC just upgraded to 20.04, a make worked also (in HW mode) for flow-refactoring except for the checks target: clang-format seems to have changed some default rules not covered by our .clang-format which re-orders #include by grouping separating "..." from <...> includes with a blank line and as well as alphabetically ordering them in the same group

@g2flyer g2flyer mentioned this issue Dec 23, 2020
Merged
@g2flyer
Copy link
Contributor

g2flyer commented Feb 5, 2021

fyi: SGX SDK&PSW 2.13 got released. From release notes perspective there should be only bug-fixes as far as FPC use is concerned. As we haven't noticed any issue i guess there is no reason force version increase nor should there be an issue if somebody uses a newer version ...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@g2flyer g2flyer

Labels
None yet
Projects
None yet
Milestone
FPC 1.1
Development

No branches or pull requests
2 participants
@g2flyer @mbrandenburger