Tags from linux-sgx

stdc_ex_1.0

2022-12-07T08:45:17Z

sgx_2.18: Linux 2.18 Open Source Gold Release

2022-11-24T05:48:25Z

Linux 2.18 Open Source Gold Release

Along with the latest processor microcode address CVE-2022-21233.
Modified the Switchless library to have mitigations for the associated issue.
Added support for the Linux kernel APIs for the Enclave Dynamic Memory
Management (EDMM) features that are available with the Linux kernel v6.0 or
later. Refer to the SGX SDK developer reference for details on new trusted
APIs and enclave configuration for the EDMM features.
Enabled C++17 within SGX SDK.
Supported AMX (Advanced Matrix Extensions) in Enclave.
Replace hardcoded Enclave signing keys in all sample projects with dynamically
generated keys.
Added a new API to allow user to configure enclave internal cache size in the
Protected File System library.
Upgraded to OpenSSL 1.1.1q and upgraded Intel(R) SGX Quote Verification Enclave
to integrate SgxSSL/OpenSSL version 1.1.1q.
Supported new OS: Ubuntu* 22.04 LTS 64-bit Server version, CentOS* 8.3 64bits,
Red Hat* Enterprise Linux* Server 8.6 (for x86_64), SUSE* Linux* Enterprise
Server 15.4 64bits, Debian* 10 and Anolis* OS 8.6.
Upgraded Intel SGX QE3 to make it backward compatible.
Improved ECDSA quote generation and verification performance by caching PCK
certificates and collaterals in memory and disk drive.
Added Java support for quote verification library.
Added new APIs to unify Intel SGX and TDX quote verification in Quote
Verification Library.
Added Advisory ID in ECDSA quote verification supplemental data.
Added Intel TDX support in RA-TLS (Remote Attestation based TLS) library.
Improved TDX quote generation throughput in vsock mode.
Added Rust support for TDX quote generation.
Fixed bugs.

Signed-off-by: Li, Xun <xun.li@intel.com>

sgx_2.18_reproducible

2022-11-24T07:05:56Z

sgx_2.17.1: Linux 2.17.1 Open Source Gold Release

2022-08-10T00:55:34Z

Linux 2.17.1 Open Source Gold Release

Along with the latest processor microcode address CVE-2022-21233.
- Modified the Edger8r to generate code with mitigations for the associated issue.
- Modified the API memcpy and memcpy_s to have mitigations for the associated issue.

Signed-off-by: Li, Xun <xun.li@intel.com>

sgx_2.17: Linux 2.17 Open Source Gold Release

2022-06-15T01:34:27Z

Linux 2.17 Open Source Gold Release

Along with the latest processor microcode and re-signed all the Intel(R) SGX
Architecture Enclaves (AEs) to address CVE-2022-21123, CVE-2022-21125 and
CVE-2022-21166.
Upgraded to Protobuf 3.20.
Upgraded to SgxSSL/OpenSSL 1.1.1o.
Added Intel TDX Attestation support.
Added Rust support for ECDSA quote verification.
Fixed bugs.

Signed-off-by: Li, Xun <xun.li@intel.com>

sgx_2.17_reproducible

2022-06-15T13:43:47Z

sgx_2.16_reproducible: Updates for SGX 2.16 reproducible build.

2022-04-07T09:54:55Z

Updates for SGX 2.16 reproducible build.

Signed-off-by: Zhang Lili <lili.z.zhang@intel.com>

sgx_2.16: Linux 2.16 Open Source Gold Release

2022-04-06T04:06:27Z

Linux 2.16 Open Source Gold Release

Upgraded to OpenSSL 1.1.1m.
Provided RA-TLS (Remote Attestation based Transport Layer Security) APIs and
Samples.
Supported PKRU (Protection Key rights Register) in Enclave.
Added APIs of SHA384 and VerifyReport2 to support TDX.
Enhanced QPL (Quote Provider Library) to support caching Intel PCK
(Provisioning Certificate Key) certificate chain in local memory, or
retrieving Intel PCK cert chain from local HTTP/S address.
Upgraded Intel ECDSA Quote Verification Enclave to integrate SgxSSL/OpenSSL
version 1.1.1m.
Introduced Intel ID enclave for QE identity generation.
Fixed bugs.

Signed-off-by: Li, Xun <xun.li@intel.com>

sgx_2.15.101_reproducible: Updates for SGX 2.15.1 reproducible build.

2021-11-18T16:20:44Z

Updates for SGX 2.15.1 reproducible build.

Signed-off-by: Zhang Lili <lili.z.zhang@intel.com>

sgx_2.15.1: Linux 2.15.1 Open Source Gold Release

2021-11-18T07:30:52Z

Linux 2.15.1 Open Source Gold Release

Upgraded to OpenSSL 1.1.1l

Signed-off-by: Li, Xun <xun.li@intel.com>