Dear IC Community,
we are happy to announce a new replica version that will get proposed to be elected within the next 48 hours.
The release notes are as follows:
* Consensus: Cache finalized chain
* Consensus: Continue to attempt to validate a block even when an invalid notarization is found
* Consensus: Slow consensus down when the gap between finalization and the last cup gets too large
* Consensus: Use BTreeSet to ensure share signatures are deduplicated when aggregating
* Crypto: Add BIP32 key derivation for Threshold ECDSA
* Crypto: Add ZK proofs of equality, product, and for MEGa
* Crypto: Optimize the Threshold ECDSA protocol
* Crypto: PublicCoefficients::lagrange_coefficients_at_zero should reject duplicate inputs
* Crypto: Use random number generator from CSP instead of OpenSSL for TLS keygen
* Execution: Add invariants checks in scheduler
* Execution: Enable canister sandbox
* Execution: Handle all syscalls in sandbox
* Execution: Register callbacks within sandbox
* Execution: Registering canisters metric at the end of loop based on executed canister list
* Networking: Use dedicated OS threads for peer flows
* Node: Mark orchestrator and replica as permissive domains
* Node: SELinux policy for canister sandbox
* Node: SSH and replica AVC denial fixes
* Orchestration: Implemented node re-assignment
* Various bugfixes and test updates
The rollout of the current version went well as expected and will be finalized today by the upgrade of the NNS subnet.