Upgrade to DCAP API v4.
This will most likely break existing sessions by NOT allowing enclaves to attest anymore.
The currently used API v3 does not deliver Advisory IDs.
Thus, sessions don't have to tolerate any Advisory IDs.
After switching to Intel DCAP v4 those systems will probably have Advisory IDs reported that must be tolerated in the sessions as otherwise the enclaves will be rejected during attestation.
Sessions that ignore all advisories for availability means won't be affected by this.
The following SCONE Curated images have been removed due to the End-of-Life of their Debian 11 base image:
apps:java-17-bullseye
apps:nextcloud-apache
apps:php-8.1-apache-zts
apps:redis-6.2.6-bullseye
golang:1.22.5-bullseye
golang:1.23.8-bullseye
python:3.8-bullseye
rclone:1.69-bullseye
teemon:ebpf-exporter
Revert the change on the base image of the crosscompiler image from ubuntu24.04 to ubuntu24.10.
We stick to support for LTS versions.
Dropped SCONE Vault support.
Remove backup-controller.cas field in the SCONE CAS Kubernetes CRD.
🛡️ CAS
Support Intel DCAP API v4 by default
⚙️ Runtime
Extend Prometheus metrics with identifying labels.