diff --git a/.changelog/5790.trivial.md b/.changelog/5790.trivial.md deleted file mode 100644 index f1f00846c0c..00000000000 --- a/.changelog/5790.trivial.md +++ /dev/null @@ -1,4 +0,0 @@ -go/registry: Deprecate enable key manager CHURP flag - -Removes the code previously necessary to enable the key manager CHURP -extension. diff --git a/.changelog/5835.trivial.md b/.changelog/5835.trivial.md deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/.changelog/5836.internal.md b/.changelog/5836.internal.md deleted file mode 100644 index 045a2c60470..00000000000 --- a/.changelog/5836.internal.md +++ /dev/null @@ -1 +0,0 @@ -buildkite: Enable debug assertions in runtimes diff --git a/.changelog/5838.feature.md b/.changelog/5838.feature.md deleted file mode 100644 index 6349f8a33e7..00000000000 --- a/.changelog/5838.feature.md +++ /dev/null @@ -1 +0,0 @@ -go/runtime: Support bundle components without ELF binary diff --git a/.changelog/5839.trivial.md b/.changelog/5839.trivial.md deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/.changelog/5840.feature.md b/.changelog/5840.feature.md deleted file mode 100644 index c767306890b..00000000000 --- a/.changelog/5840.feature.md +++ /dev/null @@ -1 +0,0 @@ -Add support for verifying Intel TDX quotes diff --git a/.changelog/5844.internal.md b/.changelog/5844.internal.md deleted file mode 100644 index e69709a2776..00000000000 --- a/.changelog/5844.internal.md +++ /dev/null @@ -1 +0,0 @@ -go: Bump go-libp2p to 0.36.3 diff --git a/.changelog/5847.trivial.md b/.changelog/5847.trivial.md deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/.changelog/5848.trivial.md b/.changelog/5848.trivial.md deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/.changelog/5851.bugfix.md b/.changelog/5851.bugfix.md deleted file mode 100644 index 4123429eb8b..00000000000 --- a/.changelog/5851.bugfix.md +++ /dev/null @@ -1 +0,0 @@ -runtime/src/dispatcher: Propagate panics during status/policy update diff --git a/.changelog/5852.internal.md b/.changelog/5852.internal.md deleted file mode 100644 index 73bb9268d2c..00000000000 --- a/.changelog/5852.internal.md +++ /dev/null @@ -1 +0,0 @@ -keymanager: Add mock trusted signers for debug mock SGX builds diff --git a/.changelog/5856.internal.md b/.changelog/5856.internal.md deleted file mode 100644 index a64b3b65eeb..00000000000 --- a/.changelog/5856.internal.md +++ /dev/null @@ -1 +0,0 @@ -go: Bump github.com/dgraph-io/badger to v4.3.1 diff --git a/.changelog/5861.feature.md b/.changelog/5861.feature.md deleted file mode 100644 index 6fc500db9b6..00000000000 --- a/.changelog/5861.feature.md +++ /dev/null @@ -1 +0,0 @@ -Add QEMU-based Intel TDX provisioner diff --git a/.changelog/5863.internal.md b/.changelog/5863.internal.md deleted file mode 100644 index 1717e954478..00000000000 --- a/.changelog/5863.internal.md +++ /dev/null @@ -1 +0,0 @@ -keymanager/src/client: Fetch churp key shares concurrently diff --git a/.changelog/5865.internal.md b/.changelog/5865.internal.md deleted file mode 100644 index d0dd0e2c7fd..00000000000 --- a/.changelog/5865.internal.md +++ /dev/null @@ -1 +0,0 @@ -keymanager: Expose runtime ID and RSK in the key manager client diff --git a/.changelog/5867.internal.md b/.changelog/5867.internal.md deleted file mode 100644 index a607b6d0d21..00000000000 --- a/.changelog/5867.internal.md +++ /dev/null @@ -1 +0,0 @@ -runtime: Remove obsolete feature rpc_peer_id diff --git a/.changelog/5872.feature.md b/.changelog/5872.feature.md deleted file mode 100644 index da6f148aa46..00000000000 --- a/.changelog/5872.feature.md +++ /dev/null @@ -1 +0,0 @@ -runtime/src/enclave_rpc: Support peer feedback for concurrent requests diff --git a/.changelog/5876.cfg.md b/.changelog/5876.cfg.md deleted file mode 100644 index 318ec02c943..00000000000 --- a/.changelog/5876.cfg.md +++ /dev/null @@ -1,12 +0,0 @@ -The pathbadger storage backend is now the default for new nodes - -When a node is provisioned into an empty data directory it will default to -using the `pathbadger` storage backend. - -For existing nodes, the storage backend is automatically detected based on -the data directory. When multiple storage directories exist, the one most -recently modified is used. - -In case one does not want this new behavior, it is still possible to set -the `storage.backend` to `badger`/`pathbadger` to explicitly configure the -desired storage backend and disable autodetection. diff --git a/.changelog/5876.feature.md b/.changelog/5876.feature.md deleted file mode 100644 index 53cb8ec45b5..00000000000 --- a/.changelog/5876.feature.md +++ /dev/null @@ -1,8 +0,0 @@ -go/storage: Add automatic storage backend detection - -The new default storage backend is "auto" which attempts to detect the -storage backend that should be used based on existing data directories. -When none exist, "pathbadger" is used. When multiple exist, the most -recently modified one is used. - -This should make newly deployed nodes default to pathbadger. diff --git a/.changelog/5878.feature.md b/.changelog/5878.feature.md deleted file mode 100644 index 12552d01cf9..00000000000 --- a/.changelog/5878.feature.md +++ /dev/null @@ -1 +0,0 @@ -go/common/grpc: allow non-tls connections to loopback addresses diff --git a/.changelog/5879.feature.md b/.changelog/5879.feature.md deleted file mode 100644 index f1f23c0ea6f..00000000000 --- a/.changelog/5879.feature.md +++ /dev/null @@ -1 +0,0 @@ -runtime/src/enclave_rpc/client: Support concurrent sessions diff --git a/.changelog/5885.trivial.md b/.changelog/5885.trivial.md deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/.changelog/5888.feature.md b/.changelog/5888.feature.md deleted file mode 100644 index 1826f825cdc..00000000000 --- a/.changelog/5888.feature.md +++ /dev/null @@ -1 +0,0 @@ -go/runtime/client: Expose state proofs via gRPC diff --git a/.changelog/5890.internal.md b/.changelog/5890.internal.md deleted file mode 100644 index fe36098efba..00000000000 --- a/.changelog/5890.internal.md +++ /dev/null @@ -1 +0,0 @@ -go: Bump go-libp2p to 0.36.5 diff --git a/.changelog/5891.internal.md b/.changelog/5891.internal.md deleted file mode 100644 index 858ef0eeea7..00000000000 --- a/.changelog/5891.internal.md +++ /dev/null @@ -1 +0,0 @@ -go: Bump CometBFT to 0.37.11-oasis1 diff --git a/.changelog/5897.internal.md b/.changelog/5897.internal.md deleted file mode 100644 index 5601ecc461d..00000000000 --- a/.changelog/5897.internal.md +++ /dev/null @@ -1,7 +0,0 @@ -secret-sharing/src/churp/switch: Verify combined bivariate polynomial - -After all bivariate shares are collected and the switch either -creates a new shareholder or proactivates the share of an existing -one, the new share should be verified to ensure that the verification -matrix of the combined bivariate polynomial satisfies the non-zero -leading term requirements. diff --git a/.punch_version.py b/.punch_version.py index fc61294b0cd..438072eaf88 100644 --- a/.punch_version.py +++ b/.punch_version.py @@ -1,3 +1,3 @@ year = '24' -minor = 2 +minor = 3 micro = 0 diff --git a/CHANGELOG.md b/CHANGELOG.md index 90cc479a8eb..d7c9c58a708 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -12,6 +12,106 @@ The format is inspired by [Keep a Changelog]. +## 24.3 (2024-10-14) + +| Protocol | Version | +|:------------------|:---------:| +| Consensus | 7.0.0 | +| Runtime Host | 5.1.0 | +| Runtime Committee | 5.0.0 | + +### Configuration Changes + +- The pathbadger storage backend is now the default for new nodes + ([#5876](https://github.com/oasisprotocol/oasis-core/issues/5876)) + + When a node is provisioned into an empty data directory it will default to + using the `pathbadger` storage backend. + + For existing nodes, the storage backend is automatically detected based on + the data directory. When multiple storage directories exist, the one most + recently modified is used. + + In case one does not want this new behavior, it is still possible to set + the `storage.backend` to `badger`/`pathbadger` to explicitly configure the + desired storage backend and disable autodetection. + +### Features + +- go/runtime: Support bundle components without ELF binary + ([#5838](https://github.com/oasisprotocol/oasis-core/issues/5838)) + +- Add support for verifying Intel TDX quotes + ([#5840](https://github.com/oasisprotocol/oasis-core/issues/5840)) + +- Add QEMU-based Intel TDX provisioner + ([#5861](https://github.com/oasisprotocol/oasis-core/issues/5861)) + +- runtime/src/enclave_rpc: Support peer feedback for concurrent requests + ([#5872](https://github.com/oasisprotocol/oasis-core/issues/5872)) + +- go/storage: Add automatic storage backend detection + ([#5876](https://github.com/oasisprotocol/oasis-core/issues/5876)) + + The new default storage backend is "auto" which attempts to detect the + storage backend that should be used based on existing data directories. + When none exist, "pathbadger" is used. When multiple exist, the most + recently modified one is used. + + This should make newly deployed nodes default to pathbadger. + +- go/common/grpc: allow non-tls connections to loopback addresses + ([#5878](https://github.com/oasisprotocol/oasis-core/issues/5878)) + +- runtime/src/enclave_rpc/client: Support concurrent sessions + ([#5879](https://github.com/oasisprotocol/oasis-core/issues/5879)) + +- go/runtime/client: Expose state proofs via gRPC + ([#5888](https://github.com/oasisprotocol/oasis-core/issues/5888)) + +### Bug Fixes + +- runtime/src/dispatcher: Propagate panics during status/policy update + ([#5851](https://github.com/oasisprotocol/oasis-core/issues/5851)) + +### Internal Changes + +- buildkite: Enable debug assertions in runtimes + ([#5836](https://github.com/oasisprotocol/oasis-core/issues/5836)) + +- go: Bump go-libp2p to 0.36.3 + ([#5844](https://github.com/oasisprotocol/oasis-core/issues/5844)) + +- keymanager: Add mock trusted signers for debug mock SGX builds + ([#5852](https://github.com/oasisprotocol/oasis-core/issues/5852)) + +- go: Bump github.com/dgraph-io/badger to v4.3.1 + ([#5856](https://github.com/oasisprotocol/oasis-core/issues/5856)) + +- keymanager/src/client: Fetch churp key shares concurrently + ([#5863](https://github.com/oasisprotocol/oasis-core/issues/5863)) + +- keymanager: Expose runtime ID and RSK in the key manager client + ([#5865](https://github.com/oasisprotocol/oasis-core/issues/5865)) + +- runtime: Remove obsolete feature rpc_peer_id + ([#5867](https://github.com/oasisprotocol/oasis-core/issues/5867)) + +- go: Bump go-libp2p to 0.36.5 + ([#5890](https://github.com/oasisprotocol/oasis-core/issues/5890)) + +- go: Bump CometBFT to 0.37.11-oasis1 + ([#5891](https://github.com/oasisprotocol/oasis-core/issues/5891)) + +- secret-sharing/src/churp/switch: Verify combined bivariate polynomial + ([#5897](https://github.com/oasisprotocol/oasis-core/issues/5897)) + + After all bivariate shares are collected and the switch either + creates a new shareholder or proactivates the share of an existing + one, the new share should be verified to ensure that the verification + matrix of the combined bivariate polynomial satisfies the non-zero + leading term requirements. + ## 24.2 (2024-08-20) | Protocol | Version |