Skip to content

5.0.0-dev2

Pre-release
Pre-release
Compare
Choose a tag to compare
@ccf-bot ccf-bot released this 26 Sep 13:25
ccf-5.0.0-dev2
a5f3b4c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
  • Updated llhttp from 6.0.9 to 9.0.1.
  • Updated fmt library from 9.1.0 to 10.1.1.
  • Updated QCBOR from 1.1 to 1.2.
  • Updated nghttp2 from 1.51.0 to 1.55.1.
  • Converted SNP attestation UVM endorsements from integer to arbitrary string.
  • Updated Intel SGX PSW from 2.17 to 2.20 (#5616)
  • Path to the enclave file should now be passed as --enclave-file CLI argument to cchost, rather than enclave.file entry within configuration file. A potential SNP security context directory environment variable override, where desired, should now be passed as --snp-security-context-dir-var CLI argument to cchost, rather than attestation.environment.security_context_directory entry within configuration file. This is to ensure that these values are attested on Confidential Containers/SNP, even if the configuration itself is provided from un-attested storage, such as an external mount. The configuration entries are deprecated, and will be removed in a future release.
  • Added ccf.SnpAttestation.verifySnpAttestation() endpoint for TypeScript apps. (#5653)
  • Secret sharing used for ledger recovery now relies on a much simpler implementation that requires no external dependencies. Note that while the code still accepts shares generated by the old code for now, it only generates shares with the new implementation. As a result, a DR attempt that would downgrade the code to a version that pre-dates this change, after having previously picked it up, would not succeed if a reshare had already taken place (#5655).

MCR Docker Images: App Development, C++ Runtime, TypeScript/JavaScript Runtime

Assets 16
Loading