All Projects → gramineproject → graphene

gramineproject / graphene

Licence: LGPL-3.0 license
Graphene / Graphene-SGX - a library OS for Linux multi-process applications, with Intel SGX support

Programming Languages

c
50402 projects - #5 most used programming language
python
139335 projects - #7 most used programming language
Makefile
30231 projects
assembly
5116 projects
Meson
512 projects
shell
77523 projects

Projects that are alternatives of or similar to graphene

Graphene
Graphene / Graphene-SGX - a library OS for Linux multi-process applications, with Intel SGX support
Stars: ✭ 614 (-17.14%)
Mutual labels:  virtualization, compatibility
ganeti-rpm
Ganeti RPM Packaging
Stars: ✭ 23 (-96.9%)
Mutual labels:  virtualization
react-functional-select
Micro-sized & micro-optimized select component for React.js
Stars: ✭ 165 (-77.73%)
Mutual labels:  virtualization
react-virtual-list
A tiny virtualization list component(gzipped 6KB), supports dynamic height: https://dwqs.github.io/react-virtual-list/
Stars: ✭ 45 (-93.93%)
Mutual labels:  virtualization
docker-sgx
Base container for applications using the official Intel SGX SDK
Stars: ✭ 34 (-95.41%)
Mutual labels:  sgx
lxroot
A lightweight, flexible, and safer alternative to chroot and/or Docker.
Stars: ✭ 69 (-90.69%)
Mutual labels:  virtualization
uvmm
Virtual machine monitor for L4Re
Stars: ✭ 22 (-97.03%)
Mutual labels:  virtualization
mpx-es-check
Checks the version of ES in JavaScript files with simple shell commands
Stars: ✭ 15 (-97.98%)
Mutual labels:  compatibility
node-compat-require
Easily allow your Node program to run in a target node version range to maximize compatibility.
Stars: ✭ 22 (-97.03%)
Mutual labels:  compatibility
aurelia-virtual-scroll
Aurelia Virtual Scroller
Stars: ✭ 15 (-97.98%)
Mutual labels:  virtualization
Hypervisor
Hypervisor implementation for x86_64 ISA MIT JOS
Stars: ✭ 25 (-96.63%)
Mutual labels:  virtualization
ModernOperatingSystems AndrewTanenbaum
My notes after reading 'Modern Operating Systems' book by Andrew Tanenbaum and Herbert Bos.
Stars: ✭ 71 (-90.42%)
Mutual labels:  virtualization
vga-passthrough
Up to date (2021) reference for setting up a VGA passthrough on (Ubuntu) Linux.
Stars: ✭ 171 (-76.92%)
Mutual labels:  virtualization
sgx-tutorial-space18
Tutorial: Uncovering and mitigating side-channel leakage in Intel SGX enclaves
Stars: ✭ 44 (-94.06%)
Mutual labels:  sgx
serveradmin
Configuration management database system of InnoGames
Stars: ✭ 40 (-94.6%)
Mutual labels:  virtualization
ovirt-ansible
Ansible playbooks for ovirt management
Stars: ✭ 26 (-96.49%)
Mutual labels:  virtualization
stackbuilder
Stackbuilder builds stacks of virtual machines
Stars: ✭ 21 (-97.17%)
Mutual labels:  virtualization
docker-sgx
A Docker image with Intel SGX support.
Stars: ✭ 66 (-91.09%)
Mutual labels:  sgx
ovirt-web-ui
Modern lightweight UI for standard (non-admin) oVirt users
Stars: ✭ 87 (-88.26%)
Mutual labels:  virtualization
n0stack
A simple cloud provider using gRPC
Stars: ✭ 51 (-93.12%)
Mutual labels:  virtualization

PROJECT MOVED TO A NEW REPOSITORY

Note: Graphene project was renamed to Gramine and moved to a new location: https://github.com/gramineproject/gramine. All development will continue there.


Graphene Library OS with Intel SGX Support

Documentation Status

A Linux-compatible Library OS for Multi-Process Applications

NOTE: We are in the middle of transitioning our buildsystem to Meson, and the build procedures are changing. See Building instructions for an up-to-date build tutorial.

What is Graphene?

Graphene is a lightweight library OS, designed to run a single application with minimal host requirements. Graphene can run applications in an isolated environment with benefits comparable to running a complete OS in a virtual machine -- including guest customization, ease of porting to different OSes, and process migration.

Graphene supports native, unmodified Linux binaries on any platform. Currently, Graphene runs on Linux and Intel SGX enclaves on Linux platforms.

In untrusted cloud and edge deployments, there is a strong desire to shield the whole application from rest of the infrastructure. Graphene supports this “lift and shift” paradigm for bringing unmodified applications into Confidential Computing with Intel SGX. Graphene can protect applications from a malicious system stack with minimal porting effort.

Graphene is a growing project and we have a growing contributor and maintainer community. The code and overall direction of the project are determined by a diverse group of contributors, from universities, small and large companies, as well as individuals. Our goal is to continue this growth in both contributions and community adoption.

Release candidate version of Graphene 1.2 available

Graphene has evolved a lot since our last major release. Over the last few months, we have made significant updates to provide a stable version that supports deploying key workloads with Intel SGX. We’ve rewritten major subsystems, done a significant update to the build and packaging scripts, extended test coverage, and improved the CI/CD process. We’ve reviewed and hardened specific security aspects of Graphene, and increased stability for long-running and heavy workloads.

Graphene also includes full SGX Attestation support, protected files support, multi-process support with encrypted IPC, and support for the upstreamed SGX driver for Linux. We’ve introduced a number of performance optimizations for SGX, and provide mechanisms to more easily deploy in cloud environments with full support for automatic Docker container integration using Graphene Shielded Containers (GSC).

We have a growing set of well-tested applications including machine learning frameworks, databases, webservers, and programming language runtimes.

This version of Graphene is tagged 'v1.2-rc1'. We encourage you to try this out with your workloads and let us know if you’re facing any issues. Please see the release page for release notes and installation instructions.

While we have made significant progress, we are continuing to work towards making Graphene better and adding support for more workloads. The items that we are most immediately working on are tracked in #1544.

In the meantime, we are also in the process of transitioning the Graphene project to a new home within the Confidential Computing Consortium under the Linux Foundation. In Q3 2021 we will provide more details on this, and we expect the next version of Graphene to be released once this transition is complete.

Graphene documentation

The official Graphene documentation can be found at https://graphene.readthedocs.io. Below are quick links to some of the most important pages:

Getting help

For any questions, please send an email to [email protected] (public archive).

For bug reports, post an issue on our GitHub repository: https://github.com/oscarlab/graphene/issues.

Acknowledgments

Graphene Project benefits from generous help of fosshost.org: they lend us a VPS, which we use as toolserver and package hosting.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].