forked from gramineproject/gramine
-
Notifications
You must be signed in to change notification settings - Fork 0
/
changelog
127 lines (87 loc) · 4.16 KB
/
changelog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
gramine (1.7post~UNRELEASED) UNRELEASED; urgency=medium
*
-- Wojtek Porczyk <[email protected]> Wed, 24 Apr 2024 09:27:58 +0200
gramine (1.7) bookworm bullseye jammy focal; urgency=medium
* version 1.7
* added support for secure eventfd
* added support for operations on encrypted files (aka protected files):
* unlink() on corrupted files
* truncate() to arbitrary length
* added gramine-manifest-check tool and built-in manifest schema check in
gramine-sgx-sign
* updated curl to 8.7.1
-- Wojtek Porczyk <[email protected]> Wed, 24 Apr 2024 09:27:25 +0200
gramine (1.6.2) bookworm bullseye jammy focal; urgency=medium
* version 1.6.2
* fixed a security bug degenerating trusted_files to allowed_files on fork
-- Wojtek Porczyk <[email protected]> Tue, 12 Mar 2024 09:33:18 +0100
gramine (1.6.1) bookworm bullseye jammy focal; urgency=medium
* version 1.6.1
* updated mbedtls to 3.5.2
(fixes CVE-2024-23170 and CVE-2024-23775)
* updated curl to 8.5.0
(fixes CVE-2023-46218 and CVE-2023-46219)
* update glibc to 2.39
(fixes CVE-2023-6246, CVE-2023-6779 and CVE-2023-6780)
* added sgx.insecure__allow_memfaults_without_exinfo manifest option as
a workaround for usability regression (custom signal handlers not working
on older Intel CPUs) caused by recent security hardening
* added performance and correctness fixes for Encrypted Files
-- Wojtek Porczyk <[email protected]> Tue, 20 Feb 2024 13:00:00 +0100
gramine (1.6) bookworm bullseye jammy focal; urgency=medium
* version 1.6
* updated python3-click dependency to >= 6.7
* added python3-pkg-resources dependency (if python3 < 3.10)
-- Wojtek Porczyk <[email protected]> Mon, 11 Dec 2023 10:00:00 +0100
gramine (1.5) bookworm bullseye jammy focal; urgency=medium
* version 1.5
* added python3-recommonmark
* removed libcjson1* dependencies, cJSON is built from subproject
-- Wojtek Porczyk <[email protected]> Thu, 7 Jul 2023 11:00:00 +0200
gramine (1.4) bullseye bookworm bionic focal jammy; urgency=medium
[ Wojtek Porczyk ]
* remove python3-protobuf dependency
* add perl dependency
* fix conflicting files in RA-TLS packages
* add minimal version to ninja-build
* optionally build against either linux-libc-dev (the default) or
linux-sources-* (as before)
* fix clean to not remove meson packagecache
[ Mariusz Zaborski ]
* add gramine-dcap transitional package
[ Dmitrii Kuvaiskii ]
* package mbedtls_gramine
-- Wojtek Porczyk <[email protected]> Sun, 12 Feb 2023 00:00:00 +0100
gramine (1.3.1-1~ubuntu0.18.04) bionic focal; urgency=medium
* rebuild for bionic and focal
-- Wojtek Porczyk <[email protected]> Thu, 29 Sep 2022 20:00:00 +0200
gramine (1.3.1-1) stable; urgency=medium
* bump to upstream commit e18bc05b17fd704b259cb0401f928dc4ec5199a6
* more libratls fixes
-- Wojtek Porczyk <[email protected]> Mon, 26 Sep 2022 23:00:00 +0200
gramine (1.3-1) stable; urgency=medium
* bump to upstream commit a6887a5321433c8605bdbecea9f3d45afed66993
* fix dependencies for ratls packages
* fix packaging of ratls libraries
-- Wojtek Porczyk <[email protected]> Mon, 26 Sep 2022 22:00:00 +0200
gramine (1.2-1) stable; urgency=medium
* bump to upstream version 1.2
* add nasm dependency per upstream
* -Ddcap=enable, add respective dependencies
* add missing libprotobuf-c1 dependency
* fill debian/copyright
* add missing python3-cryptography dependency
* add missing runtime dependencies for -Ddcap
* fix debian/rules clean for bumped paths in subprojects/
* split ratls packages for precise dependencies
* fix dependencies and cleanup
* fix dependencies, again
* remove libc6 dependencies
* fix manpages installation in -dcap and -oot variants
-- Wojtek Porczyk <[email protected]> Fri, 27 May 2022 12:00:00 +0200
gramine (1.1-1) stable; urgency=medium
* update to v1.1
-- Wojtek Porczyk <[email protected]> Wed, 02 Feb 2022 19:15:49 +0100
gramine (1.0-1) stable; urgency=medium
* update to v1.0
-- Wojtek Porczyk <[email protected]> Fri, 09 Oct 2021 19:20:00 +0200