CCF
CCF copied to clipboard
microsoft
Confidential Consortium Framework
Currently only supported by our CHAMP map implementation for the KV, not when we use RB map. This means that enabling `KV_STATE_RB` after #4145 will cause errors.
Backports the following commits to release/4.x: - #6080
`$Fabric_NodeIPOrFQDN:2377` should be accessible in the pool we use now.
Observed in https://dev.azure.com/MSRC-CCF/CCF/_build/results?buildId=75971&view=logs&j=8f3dc89c-3708-5926-47e7-27120a268dab&t=bb1a7e6d-8f5b-56e4-638c-b498b20b4b62 > /__w/1/s/build/workspace/reconfiguration_reconfiguration_test_cft_12/out:207: 2023-09-19T01:48:39.252933Z 0 [fail ] ../src/enclave/main.cpp:295 | exception during enclave init: could not generate new EC key https://github.com/microsoft/CCF/blob/93de138399d4f4a9eb1f809e187ff1047c26d839/src/crypto/openssl/key_pair.cpp#L59 We should at least log the failure code,...
CCF now supports a mode where HTTP redirect responses are returned, rather than relying on internal forwarding. This can be used to ensure that write requests are executed on a...
#6050 provides a working implementation of forwarding, but there's a few things that I've delayed for future PRs: - [x] Removing the custom `is_create` flag. I think the special `/create`...
We believe it should be possible to provide a HTTP-standard form of session consistency by processing ETAG headers in CCF. This will need to be domain/app-specific, but we could prototype...
The CCF infra has wrappers for COSE verification in C++ (built around t-cose), but these aren't currently exposed in the JS/TS API. Ask is to look at exposing that. There...
