|
Now: Open Enclave SDK SIG-Attestation Meeting Series - 07/28/2021
#cal-notice
oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
Open Enclave SDK SIG-Attestation Meeting Series When: Where: Organizer: Radhika Jandhyala radhikaj@... Description:
Agenda and Minutes: https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A Meeting ID: 995 5293 2630 Dial by your location
|
|
|
|
SIG-Arch for July 20th canceled
Radhika Jandhyala
Hi
The SIG-Arch meeting scheduled for July 20th 2021 is canceled as there are no outstanding topics to discuss. Thanks, Radhika
|
|
|
|
Open Enclave SDK Update Recommendation
Yen Lee
Hi Everybody,
Starting July 31, 2021, Azure DCAP Client<https://github.com/microsoft/Azure-DCAP-Client> will have a new policy to update SGX collateral in a different cadence. It is recommended that you rebuild with the latest Open Enclave SDK releases if your applications rely on Azure DCAP Client to provide verification collateral and call any of the following Open Enclave APIs for evidence verification: * oe_verify_evidence * oe_verify_report * oe_verify_report_v2 * oe_verify_remote_report * oe_verify_attestation_certificate * oe_verify_attestation_certificate_with_evidence * oe_verify_attestation_certificate_with_evidence_v2 Quick fix has been applied to the following Open Enclave releases: * v0.14.1 * v0.15.1 * v0.17.1 or later In addition, V0.17.1 fixes CVE-2021-33767<https://github.com/openenclave/openenclave/security/advisories/GHSA-mj87-466f-jq42> and it is therefore highly recommended that you move to v0.17.1. Thanks, Yen Lee
|
|
|
|
Open Enclave SDK v0.17.1 Release
Rob Sanchez
Hi all,
Open Enclave version v0.17.1 is released and can be found at: https://github.com/openenclave/openenclave/releases/tag/v0.17.1 The Ubuntu 18.04/20.04 packages has been published to the production packages.microsoft.com APT repository. The Windows Server 2019 package is available on nuget.org: https://www.nuget.org/packages/open-enclave/0.17.1 The Visual Studio Extension is available on the Visual Studio Marketplace: https://marketplace.visualstudio.com/items?itemName=MS-TCPS.OpenEnclaveSDK-VSIX Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo (https://github.com/openenclave/openenclave) to report any issues that you may come across in your use of the SDK! Thanks, Rob
|
|
|
|
V0.17.1 Released
Radhika Jandhyala
Hi Everybody,
V0.17.1 is released and contains a fix for CVE-2021-33767<https://github.com/openenclave/openenclave/security/advisories/GHSA-mj87-466f-jq42>. We recommend moving to V0.17.1 as soon as possible. Thanks, Radhika
|
|
|
|
Now: Open Enclave SDK SIG-Attestation Meeting Series - 07/14/2021
#cal-notice
oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
Open Enclave SDK SIG-Attestation Meeting Series When: Where: Organizer: Radhika Jandhyala radhikaj@... Description:
Agenda and Minutes: https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A Meeting ID: 995 5293 2630 Dial by your location
|
|
|
|
SIG-Arch on 07/13 canceled
Radhika Jandhyala
Hi,
The SIG-Arch meeting scheduled for 07/13 is canceled as there are no topics on the agenda. Thanks, Radhika
|
|
|
|
Open Enclave v0.17.0 Release
Rob Sanchez
Hi all,
Open Enclave version 0.17.0 is released and can be found at: Release v0.17.0 * openenclave/openenclave (github.com)<https://github.com/openenclave/openenclave/releases/tag/v0.17.0> The Ubuntu 18.04/20.04 packages has been published to the production packages.microsoft.com APT repository. The Windows Server 2019 package is available on nuget.org: NuGet Gallery | open-enclave 0.17.0<https://www.nuget.org/packages/open-enclave/0.17.0> The Visual Studio Extension will soon be available on the Visual Studio Marketplace: Open Enclave - Preview - Visual Studio Marketplace<https://marketplace.visualstudio.com/items?itemName=MS-TCPS.OpenEnclaveSDK-VSIX> Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo (openenclave/openenclave: SDK for developing enclaves (github.com)<https://github.com/openenclave/openenclave>) to report any issues that you may come across in your use of the SDK! Thanks, Rob
|
|
|
|
SIG-Arch July 6th Canceled
Radhika Jandhyala
Hi,
SIG-Arch meeting to be help on July 6th is canceled. Thanks, Radhika
|
|
|
|
Now: Open Enclave SDK SIG-Attestation Meeting Series - 06/30/2021
#cal-notice
oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
Open Enclave SDK SIG-Attestation Meeting Series When: Where: Organizer: Radhika Jandhyala radhikaj@... Description:
Agenda and Minutes: https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A Meeting ID: 995 5293 2630 Dial by your location
|
|
|
|
v0.17.0 RC2
Rob Sanchez
Hi,
Open Enclave version 0.17.0 will soon be published, and we want to send out some release candidate packages (Windows Server 2019, Ubuntu 18.04/20.04) for pre-release testing. You can find the 0.17.0-RC2 release candidate packages on GitHub below: Release v0.17.0-rc2 * openenclave/openenclave (github.com)<https://github.com/openenclave/openenclave/releases/tag/v0.17.0-rc2> Please test these packages and let us know if you come across any issues - note that this release (and releases moving forward) will include Ubuntu 20.04 packages, so please test those if they are relevant. Thank you so much for your help! To the Committers of the OE SDK: Please let us know if we have missed anything in the release notes. We should update our CHANGELOG if so. Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo to report any issues that you may come across in your use of the SDK! Thanks Rob Release Notes: Added * Ubuntu 20.04 packages are included in this release. * OE SDK is now built using clang-10. It is required to upgrade the compiler to clang-10 if you are building the SDK from source. * Add the CapturePFGPExceptions preference for the SGX2 feature of capturing #PF and #GP exceptions inside an enclave. * Developers can specify the CapturePFGPExceptions with a binary value in the enclave config file or set the value via the newly added OE_SET_ENCLAVE_SGX2 macro, which is used to set SGX2-specific properties. * When setting CapturePFGPExceptions=1, the OE loader will enable the feature when running on an SGX2-capable CPU. * Once enabled, the in-enclave exception handler can capture the #PF (with the OE_EXCEPTION_PAGE_FAULT code) and #GP (with the code OE_EXCEPTION_ACCESS_VIOLATION code) exceptions. * More information about the exceptions can be found in the faulting_address and error_code members of the oe_exception_record_t structure passed into the handler. * Add the following attestation claims from oe_verify_evidence(): * OE_CLAIM_TCB_STATUS * OE_CLAIM_TCB_DATE * Publish tool oeutil. * The tool, currently under the tools directory, will integrate multiple OE utilities<https://github.com/openenclave/openenclave/blob/v0.17.0-rc2/tools/oeutil/README.md> in the future. * The tool integrated oegenerate in this release. * SGX enclaves created using OE SDK can now be debugged using oelldb. oelldb is a python based extension for LLDB that supports debugging SGX enclaves. lldb-7 or above is required. Deprecated * The Release build type for building the Open Enclave SDK from source is deprecated. The recommendation is using RelWithDebInfo instead. * Experimental support for RHEL has been deprecated.
|
|
|
|
SIG-Arch for June 29th Canceled
Radhika Jandhyala
Hi
SIG-Arch meeting for Open Enclave SDK to be help on June 29th is canceled. Thanks, Radhika
|
|
|
|
SIG-Arch for June 22 canceled
Radhika Jandhyala
Hi,
SIG-Arch for OE SDK scheduled for June 22nd is canceled. Thanks, Radhika
|
|
|
|
v0.17.0 RC1
Rob Sanchez
Hi,
Open Enclave version v0.17.0 will soon be published, and we want to send out some release candidate packages (Windows Server 2019, Ubuntu 18.04/20.04) for pre-release testing. You can find the v0.17.0 RC1 release candidate packages on GitHub below: Release v0.17.0-rc1 * openenclave/openenclave (github.com)<https://github.com/openenclave/openenclave/releases/tag/v0.17.0-rc1> Please test these packages and let us know if you come across any issues. Thank you so much for your help! To the Committers of the OE SDK: Please let us know if we have missed anything in the release notes. We should update our CHANGELOG if so. Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo to report any issues that you may come across in your use of the SDK! Thanks Rob Release Notes: Changed * OE SDK is now built using clang-10. It is required to upgrade the compiler to clang-10 if you are building the SDK from source. Added * Add the CapturePFGPExceptions preference for the SGX2 feature of capturing #PF and #GP exceptions inside an enclave. * Developers can specify the CapturePFGPExceptions with a binary value in the enclave config file or set the value via the newly added OE_SET_ENCLAVE_SGX2 macro, which is used to set SGX2-specific properties. * When setting CapturePFGPExceptions=1, the OE loader will enable the feature when running on an SGX2-capable CPU. * Once enabled, the in-enclave exception handler can capture the #PF (with the OE_EXCEPTION_PAGE_FAULT code) and #GP (with the code OE_EXCEPTION_ACCESS_VIOLATION code) exceptions. * More information about the exceptions can be found in the faulting_address and error_code members of the oe_exception_record_t structure passed into the handler. * Add the following attestation claims from oe_verify_evidence(): * OE_CLAIM_TCB_STATUS * OE_CLAIM_TCB_DATE * Publish tool oeutil. * The tool, currently under the tools directory, will integrate multiple OE utilities<https://github.com/openenclave/openenclave/blob/v0.17.0-rc1/tools/oeutil/README.md> in the future. * The tool integrated oegenerate in this release. * SGX enclaves created using OE SDK can now be debugged using oelldb. oelldb is a python based extension for LLDB that supports debugging SGX enclaves. lldb-7 or above is required. Deprecated * The Release build type for building the Open Enclave SDK from source is deprecated. The recommendation is using RelWithDebInfo instead.
|
|
|
|
Happening Now: Open Enclave SDK SIG-Attestation Meeting Series - 06/16/2021
#cal-notice
oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
Open Enclave SDK SIG-Attestation Meeting Series When: Where: Organizer: Radhika Jandhyala radhikaj@... Description:
Agenda and Minutes: https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A Meeting ID: 995 5293 2630 Dial by your location
|
|
|
|
SIG-Arch meeting scheduled for 6/15 is canceled
Radhika Jandhyala
Hi,
The SIG-Arch meeting scheduled for 6/15 is canceled as there are no topics for discussion. Thanks, Radhika
|
|
|
|
Sig-Arch meeting for June 8th Canceled
Radhika Jandhyala
Hi,
Today’s meeting is canceled as there are no topics on the agenda. Radhika
|
|
|
|
Happening Now: Open Enclave SDK SIG-Attestation Meeting Series - 06/02/2021
#cal-notice
oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
Open Enclave SDK SIG-Attestation Meeting Series When: Where: Organizer: Radhika Jandhyala radhikaj@... Description:
Agenda and Minutes: https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A Meeting ID: 995 5293 2630 Dial by your location
|
|
|
|
Sig-Arch meeting on June 1 Canceled
Radhika Jandhyala
Hi,
The SIG-Arch meeting scheduled for June 1st is canceled as there are no items on the agenda. Thanks, Radhika
|
|
|
|
Open Enclave SDK v0.16.1 Release
Rob Sanchez
Hi all,
Open Enclave version 0.16.1 is released and can be found at: Release v0.16.1 * openenclave/openenclave (github.com)<https://github.com/openenclave/openenclave/releases/tag/v0.16.1> The Ubuntu 18.04 package has been published to the production packages.microsoft.com APT repository. The Windows Server 2019 package is available on nuget.org: NuGet Gallery | open-enclave 0.16.1<https://www.nuget.org/packages/open-enclave/0.16.1> The Visual Studio Extension is available on the Visual Studio Marketplace: Open Enclave - Preview - Visual Studio Marketplace<https://marketplace.visualstudio.com/items?itemName=MS-TCPS.OpenEnclaveSDK-VSIX> Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo (openenclave/openenclave: SDK for developing enclaves (github.com)<https://github.com/openenclave/openenclave>) to report any issues that you may come across in your use of the SDK! Thanks, Rob
|
|
|