Skip to content

Linux 2.18 Open Source Gold Release
Compare
Choose a tag to compare
@llly llly released this 25 Nov 12:58
sgx_2.18
b0af6e7
This commit was signed with the committer’s verified signature.
llly Li Xun
GPG key ID: 83DFF2547A327620
Learn about vigilant mode.

Along with the latest processor microcode address CVE-2022-21233.
Modified the Switchless library to have mitigations for the associated issue.

Added support for the Linux kernel APIs for the Enclave Dynamic Memory Management (EDMM) features that are available with the Linux kernel v6.0 or later. Refer to the SGX SDK developer reference for details on new trusted APIs and enclave configuration for the EDMM features.

Enabled C++17 within SGX SDK.

Supported AMX (Advanced Matrix Extensions) in Enclave.

Replace hardcoded Enclave signing keys in all sample projects with dynamically generated keys.

Added a new API to allow user to configure enclave internal cache size in the Protected File System library.

Upgraded to OpenSSL 1.1.1q and upgraded Intel(R) SGX Quote Verification Enclave to integrate SgxSSL/OpenSSL version 1.1.1q.

Supported new OS: Ubuntu* 22.04 LTS 64-bit Server version, CentOS* 8.3 64bits, Red Hat* Enterprise Linux* Server 8.6 (for x86_64), SUSE* Linux* Enterprise Server 15.4 64bits, Debian* 10 and Anolis* OS 8.6.

Upgraded Intel SGX QE3 to make it backward compatible.

Improved ECDSA quote generation and verification performance by caching PCK certificates and collaterals in memory and disk drive.

Added Java support for quote verification library.

Added new APIs to unify Intel SGX and TDX quote verification in Quote Verification Library.

Added Advisory ID in ECDSA quote verification supplemental data.

Added Intel TDX support in RA-TLS (Remote Attestation based TLS) library.

Improved TDX quote generation throughput in vsock mode.

Added Rust support for TDX quote generation.

Fixed bugs.

Assets 2