v0.9.7 release. Provides sgx_tstd::untrusted

Author: Yu Ding

Readme.md

@@ -1,6 +1,9 @@
 # Rust SGX SDK
 Rust SGX SDK helps developers write Intel SGX applications in Rust programming language. [[Paper pdf]](documents/ccsp17.pdf)
 
+## v0.9.7 Release
+This version provides a new namespace: `sgx_tstd::untrusted`, including `sgx_tstd::untrusted::fs` `sgx_tstd::untrusted::time` and `sgx_tstd::untrusted::path`, providing supports to operation to ocalls in a **untrusted** namespace. The **untrusted** namespace is always enabled no matter `untrusted_*` is set or not. We **urge** the developers to use the `sgx_tstd::untrusted` namespace to port their crates, instead of enabling the `untrusted_` series of features. Also, we renamed the `untrusted_net` feature to `net` for feature name unification. Please refer to [release_notes](release_notes.md) for further details.
+
 ## v0.9.6 Release
 This version provides security enhancement for untrusted IO and additional support for monotonic counter. Untrusted IO operations in `sgx_tstd::fs` `sgx_tstd::net` and `sgx_tstd::time` are **DISABLED by default** to reduce the untrusted surface, and can be enabled by features. Trusted time support is moved to `sgx_tservice::sgxtime` and monotonic counter is provided by `sgx_tservice::sgxcounter`. Please refer to [release_notes](release_notes.md) for further details.
 

release_notes.md

@@ -1,3 +1,8 @@
+# Rust SGX SDK v0.9.7 Release Notes
+**Provide `sgx_tstd::untrusted` namespace** v0.9.7 provides `sgx_tstd::untrusted::{fs,path,time}` which related to ocall functions. They are always enabled no matter `untrusted_fs` or `untrusted_time` feature is enabled or not. The major concern of providing such a namespace is that we want the developer to know they are invoking ocall related functions which brings **untrusted data** into the trusted execution engine. For the best security practice, explicitly importing from `sgx_tstd::untrusted` is better than enabling feature in `Cargo.toml`. We stress that `untrusted_fs` and `untrusted_time` features are designed to be **contingency plans** and should only be enabled when porting an very complex Rust crate to Rust-SGX enclaves.
+
+**Rename feature `untrusted_net` to `net`** `net` is well-known as untrusted and we think `net` is a better choice and similar to current features: `backtrace` and `stdio`.
+
 # Rust SGX SDK v0.9.6 Release Notes
 **Support latest Rust nightly build (nightly-2018-02-05-x86_64-unknown-linux-gnu)**
 

samplecode/backtrace/enclave/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "Backtracesampleenclave"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [lib]

samplecode/crypto/enclave/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "Cryptosampleenclave"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [lib]

samplecode/file/enclave/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "Filesampleenclave"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [lib]

samplecode/hello-rust/app/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "app"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["duanran01 <duanran01@baidu.com>"]
 build = "build.rs"
 

samplecode/hello-rust/enclave/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "Helloworldsampleenclave"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [lib]

samplecode/helloworld/enclave/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "Helloworldsampleenclave"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [lib]

samplecode/hugemem/enclave/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "Hugememsampleenclave"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [lib]

samplecode/localattestation/attestation/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "attestation"
-version = "0.9.6"
+version = "0.9.7"
 authors = ["Baidu"]
 
 [features]