From c6dcbc3b339aa1e5dd3f17765244f37896f4a1d8 Mon Sep 17 00:00:00 2001 From: Dominic Mulligan Date: Thu, 31 Mar 2022 14:52:43 +0100 Subject: [PATCH 1/3] veracruz-2204-release-notes: added release notes for Veracruz 22.04 ...also updates README.markdown. --- README.markdown | 5 ++++- documents/release-notes/VERACRUZ-2204.markdown | 15 +++++++++++++++ 2 files changed, 19 insertions(+), 1 deletion(-) create mode 100644 documents/release-notes/VERACRUZ-2204.markdown diff --git a/README.markdown b/README.markdown index 5d993e200..a2daa3230 100644 --- a/README.markdown +++ b/README.markdown @@ -4,6 +4,8 @@ +**NEWS**: the latest Veracruz release is Veracruz 22.04. See `documents/release-notes/VERACRUZ-2204.markdown` for notable changes in this release. + Veracruz is now an adopted project of the [Confidential Compute Consortium (CCC)](https://confidentialcomputing.io). Veracruz is a framework for defining and deploying collaborative, privacy-preserving computations amongst a group of mutually mistrusting individuals. @@ -45,5 +47,6 @@ Come along and meet the team, find out what everybody is working on, and discuss This project's codebase is licensed under the [MIT license](LICENSE_MIT.markdown). -The image [`Veracruz Puerto - Vista desde el Hotel Emporio`](sdk/data-generators/image-processing-generator/veracruz.jpg) by Eduardo Pavon is licensed under the [Creative Commons Attribution Share Alike 2.0 Generic (CC-BY-SA 2.0) license](https://creativecommons.org/licenses/by-sa/2.0/). [Link to the material](https://www.flickr.com/photos/tomateverde/6169756721/in/photostream) +The image [`Veracruz Puerto - Vista desde el Hotel Emporio`](sdk/data-generators/image-processing-generator/veracruz.jpg) by Eduardo Pavon is licensed under the [Creative Commons Attribution Share Alike 2.0 Generic (CC-BY-SA 2.0) license](https://creativecommons.org/licenses/by-sa/2.0/). +[Link to the material](https://www.flickr.com/photos/tomateverde/6169756721/in/photostream) diff --git a/documents/release-notes/VERACRUZ-2204.markdown b/documents/release-notes/VERACRUZ-2204.markdown new file mode 100644 index 000000000..2ee41ac75 --- /dev/null +++ b/documents/release-notes/VERACRUZ-2204.markdown @@ -0,0 +1,15 @@ +# Release notes for Veracruz 22.04 + +Notable changes in this release: + +- Changes to Linux and IceCap attestation, bringing them in line with attestation for the Nitro platform. +Policies are now provisioned into the running isolate much later in the attestation process, as opposed to being provisioned in the opening message of the attestation protocol. +- Workspace Cargo.lock files are now included in the Veracruz repository. +This should prevent a class of build issues with dependencies silently updating their MSRV without a version bump, as well as making builds more reproducible. +- The Linux Root Enclave has now been removed, bringing the component diagram for Linux inline with Nitro and IceCap. +This was the last root enclave to be removed. +- A new Veracruz system call, `fd_create`, has been added for creating anonymous files. +This sits outside of the WASI namespace, and requires the (re)introduction of the `libveracruz` programming support library. +- Optimisations in the networking stack were applied, which should go some way to reducing latency in communication between Veracruz clients and servers. + +...plus other smaller refactorings and bug fixes. From 0afbeda845e84fea11ea69be6b6323206e051336 Mon Sep 17 00:00:00 2001 From: Dominic Mulligan Date: Fri, 1 Apr 2022 09:38:25 +0100 Subject: [PATCH 2/3] veracruz-2204-release-notes: added tag name to release notes --- documents/release-notes/VERACRUZ-2204.markdown | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/documents/release-notes/VERACRUZ-2204.markdown b/documents/release-notes/VERACRUZ-2204.markdown index 2ee41ac75..d944b8a01 100644 --- a/documents/release-notes/VERACRUZ-2204.markdown +++ b/documents/release-notes/VERACRUZ-2204.markdown @@ -1,6 +1,6 @@ # Release notes for Veracruz 22.04 -Notable changes in this release: +Notable changes in this release (see the Git tag `veracruz-2204`): - Changes to Linux and IceCap attestation, bringing them in line with attestation for the Nitro platform. Policies are now provisioned into the running isolate much later in the attestation process, as opposed to being provisioned in the opening message of the attestation protocol. From f3e0432d243bc0b8720c216a1f6eb28cd1f5dc16 Mon Sep 17 00:00:00 2001 From: Dominic Mulligan Date: Fri, 1 Apr 2022 09:39:12 +0100 Subject: [PATCH 3/3] veracruz-2204-release-notes: added tag name to README --- README.markdown | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.markdown b/README.markdown index a2daa3230..ecea1430e 100644 --- a/README.markdown +++ b/README.markdown @@ -4,7 +4,7 @@ -**NEWS**: the latest Veracruz release is Veracruz 22.04. See `documents/release-notes/VERACRUZ-2204.markdown` for notable changes in this release. +**NEWS**: the latest Veracruz release is Veracruz 22.04 (see the `veracruz-2204` Git tag). See `documents/release-notes/VERACRUZ-2204.markdown` for notable changes in this release. Veracruz is now an adopted project of the [Confidential Compute Consortium (CCC)](https://confidentialcomputing.io).