Added
- Enabled creation of enclaves with base address 0x0 in SGX on Linux.
- This feature requires PSW version 2.14.1 or above.
- In 0-base enclaves a page fault is thrown on NULL pointer dereference.
- This enables applications to adopt NullPointerException/ NullReferenceException in their program logic and/or use other application stacks that do (Example, .NET runtime).
- Developers can create an 0-base enclave by setting the oesign tool configuration option 'CreateZeroBaseEnclave' to 1 or by passing in argument CREATE_ZERO_BASE_ENCLAVE=1 in OE_SET_ENCLAVE_SGX2().
- If the 0-base enclave creation is chosen, enclave image start address should be provided by setting the oesign tool configuration option 'StartAddress' or pass in the argument ENCLAVE_START_ADDRESS in OE_SET_ENCLAVE_SGX2().
Security
- Fix CVE-2021-33767
On Ubuntu 18.04: DCAP: 1.10.103.1-bionic1 PSW: 2.13.103.1-bionic1 SGXDriver: 1.33
On Ubuntu 20.04: DCAP: 1.10.103.1-focal1 PSW: 2.13.103.1-focal1 SGXDriver: 1.33
On Windows Server 2019: DCAP: 1.10.103.1 PSW: 2.12.103.1