diff --git a/README.markdown b/README.markdown index 5d993e200..ecea1430e 100644 --- a/README.markdown +++ b/README.markdown @@ -4,6 +4,8 @@ +**NEWS**: the latest Veracruz release is Veracruz 22.04 (see the `veracruz-2204` Git tag). See `documents/release-notes/VERACRUZ-2204.markdown` for notable changes in this release. + Veracruz is now an adopted project of the [Confidential Compute Consortium (CCC)](https://confidentialcomputing.io). Veracruz is a framework for defining and deploying collaborative, privacy-preserving computations amongst a group of mutually mistrusting individuals. @@ -45,5 +47,6 @@ Come along and meet the team, find out what everybody is working on, and discuss This project's codebase is licensed under the [MIT license](LICENSE_MIT.markdown). -The image [`Veracruz Puerto - Vista desde el Hotel Emporio`](sdk/data-generators/image-processing-generator/veracruz.jpg) by Eduardo Pavon is licensed under the [Creative Commons Attribution Share Alike 2.0 Generic (CC-BY-SA 2.0) license](https://creativecommons.org/licenses/by-sa/2.0/). [Link to the material](https://www.flickr.com/photos/tomateverde/6169756721/in/photostream) +The image [`Veracruz Puerto - Vista desde el Hotel Emporio`](sdk/data-generators/image-processing-generator/veracruz.jpg) by Eduardo Pavon is licensed under the [Creative Commons Attribution Share Alike 2.0 Generic (CC-BY-SA 2.0) license](https://creativecommons.org/licenses/by-sa/2.0/). +[Link to the material](https://www.flickr.com/photos/tomateverde/6169756721/in/photostream) diff --git a/documents/release-notes/VERACRUZ-2204.markdown b/documents/release-notes/VERACRUZ-2204.markdown new file mode 100644 index 000000000..d944b8a01 --- /dev/null +++ b/documents/release-notes/VERACRUZ-2204.markdown @@ -0,0 +1,15 @@ +# Release notes for Veracruz 22.04 + +Notable changes in this release (see the Git tag `veracruz-2204`): + +- Changes to Linux and IceCap attestation, bringing them in line with attestation for the Nitro platform. +Policies are now provisioned into the running isolate much later in the attestation process, as opposed to being provisioned in the opening message of the attestation protocol. +- Workspace Cargo.lock files are now included in the Veracruz repository. +This should prevent a class of build issues with dependencies silently updating their MSRV without a version bump, as well as making builds more reproducible. +- The Linux Root Enclave has now been removed, bringing the component diagram for Linux inline with Nitro and IceCap. +This was the last root enclave to be removed. +- A new Veracruz system call, `fd_create`, has been added for creating anonymous files. +This sits outside of the WASI namespace, and requires the (re)introduction of the `libveracruz` programming support library. +- Optimisations in the networking stack were applied, which should go some way to reducing latency in communication between Veracruz clients and servers. + +...plus other smaller refactorings and bug fixes.