Releases: microsoft/CCF
Releases · microsoft/CCF
5.0.9
6.0.0-dev6
Added
- Added a
ccf::any_cert_auth_policy(C++), orany_cert(JS/TS), implementing TLS client certificate authentication, but without checking for the presence of the certificate in the governance user or member tables. This enables applications wanting to do so to perform user management in application space, using application tables (#6608). - Added OpenAPI support for
std::unordered_set(#6634). - Added "cose_signatures" entry in the configuration, which allows setting "issuer" and "subject" at network start or recovery time (#6637).
5.0.8
Added
- Added a
ccf::any_cert_auth_policy(C++), orany_cert(JS/TS), implementing TLS client certificate authentication, but without checking for the presence of the certificate in the governance user or member tables. This enables applications wanting to do so to perform user management in application space, using application tables (#6608). - Set VMPL value when creating SNP attestations, and check VMPL value is in guest range when verifiying attestation, since recent updates allow host-initiated attestations (#6583).
6.0.0-dev5
6.0.0-dev4
Added
ccf.cose.verify_receipt()to support verifiying draft COSE receipts (#6603).
Removed
- Remove SECP256K1 support as a part of the migration to Azure Linux (#6592).
6.0.0-dev3
Changed
- Set VMPL value when creating SNP attestations, and check VMPL value is in guest range when verifiying attestation, since recent updates allow host-initiated attestations (#6583).
- Added
ccf::cose::edit::set_unprotected_header()API, to allow easy injection of proofs in signatures, and of receipts in signed statements (#6586).
6.0.0-dev2
5.0.7
6.0.0-dev1
Changed
- Output of
ccf::describe_merkle_proof_v1(receipt)has been updated, and is now described by ccf-tree-alg schema. - Improved error message when attempting to obtain receipts for a past epoch during a recovery (#6507).
4.0.22
Base image
- Updated container base image.