CCF
CCF copied to clipboard
microsoft
Confidential Consortium Framework
- [x] Parts of the doc (verify_tx) still use the old enum serialisation format, they need to be updated - [x] The ccf app template repo needs to be upgraded...
Some users may want to have the proposalId when resolving, because their logic depends on distinguishing "other pending proposals" and applying rules to that. This should be a backwards compatible...
Hoping to do this automatically, perhaps with a generated client or OpenAPI-based fuzzer. 2 known discrepancies noted in #5660, which should be modified in the OpenAPI (TypeSpec) source: - `previousServiceCreation`...
This is currently logged: Exception in virtual void aft::Aft::recv_message(const ccf::NodeId &, const uint8_t *, size_t) [LedgerProxy = consensus::LedgerEnclave] But the payload is encrypted, and so is safe to log while...
See https://github.com/microsoft/scitt-ccf-ledger/issues/53 and https://github.com/microsoft/scitt-ccf-ledger/issues/88 for history. This information is exposed now in the JSON & C++ receipts as "service_endorsements": https://github.com/microsoft/CCF/blob/b78c1d00133d3c2979d8f11ec10c34345e6bb3b4/include/ccf/receipt.h#L30, but not in a did/jwk-friendly format. This is partially implemented...
CCF's KV schema and internal logic assumes JWK kids uses for JWT authentication are unique globally, not per issuer. This is an incorrect assumption, as per https://www.rfc-editor.org/rfc/rfc7517#page-8
Transactions executed while the snapshot is being deserialised may see an inconsistent view of the KV (state not in sync with version, or version not in sync with history). The...
To prevent "invalid" constitutions being submitted and locking a service, we should add some utility functions to the governance JS API to validate a constitution script. As a minimum, we...
While debugging something unrelated, I think I've spotted a bad branch in the sample logging app: https://github.com/microsoft/CCF/blob/main/samples/apps/logging/logging.cpp#L1463-L1475 I think we should _always_ be returning a `next_link` here, but that our...
During the development of the data reconciliation application, one of the requirements was to get all the data that was submitted by a member; which is stored on a ccf...
