|
| using | ByteVector = llvm_vecsmall::SmallVector< uint8_t, 8 > |
| |
| using | OpenAPISecuritySchema = std::pair< std::string, nlohmann::json > |
| |
| using | AuthnPolicies = std::vector< std::shared_ptr< AuthnPolicy > > |
| |
| using | NamedAuthPolicies = std::unordered_map< std::string, std::shared_ptr< ccf::AuthnPolicy > > |
| |
| using | MemberId = EntityId< MemberIdFormatter > |
| |
| using | UserId = EntityId< UserIdFormatter > |
| |
| using | NodeId = EntityId< NodeIdFormatter > |
| |
| using | http_status = llhttp_status |
| |
| using | HandlerJsonParamsAndForward = std::function< jsonhandler::JsonAdapterResponse(endpoints::EndpointContext &ctx, nlohmann::json &¶ms)> |
| |
| using | ReadOnlyHandlerWithJson = std::function< jsonhandler::JsonAdapterResponse(endpoints::ReadOnlyEndpointContext &ctx, nlohmann::json &¶ms)> |
| |
| using | CommandHandlerWithJson = std::function< jsonhandler::JsonAdapterResponse(endpoints::CommandEndpointContext &ctx, nlohmann::json &¶ms)> |
| |
| using | ReceiptPtr = std::shared_ptr< Receipt > |
| |
| using | TxReceiptImplPtr = std::shared_ptr< TxReceiptImpl > |
| |
| using | SerialisedCoseEndorsement = std::vector< uint8_t > |
| |
| using | SerialisedCoseSignature = std::vector< uint8_t > |
| |
| using | SerialisedCoseEndorsements = std::vector< SerialisedCoseEndorsement > |
| |
| using | ListenInterfaceID = std::string |
| |
| using | PathParams = std::map< std::string, std::string, std::less<> > |
| |
| using | SeqNoCollection = ccf::ds::ContiguousSet< ccf::SeqNo > |
| |
| template<typename K , typename V > |
| using | ServiceMap = ccf::kv::MapSerialisedWith< K, V, ccf::kv::serialisers::BlitSerialiser, ccf::kv::serialisers::JsonSerialiser > |
| |
| template<typename V > |
| using | ServiceValue = ccf::kv::ValueSerialisedWith< V, ccf::kv::serialisers::JsonSerialiser, ccf::kv::serialisers::ZeroBlitUnitCreator > |
| |
| template<typename K > |
| using | ServiceSet = ccf::kv::SetSerialisedWith< K, ccf::kv::serialisers::BlitSerialiser, ccf::kv::serialisers::ZeroBlitUnitCreator > |
| |
| using | ApplicationProtocol = std::string |
| |
| using | ACMECertificates = ServiceMap< std::string, ccf::crypto::Pem > |
| |
| using | CACertBundlePEMs = ServiceMap< std::string, std::string > |
| |
| using | CodeIDs = ServiceMap< pal::SgxAttestationMeasurement, CodeStatus > |
| |
| using | Constitution = ServiceValue< std::string > |
| |
| using | SnpHostDataMap = ServiceMap< HostData, HostDataMetadata > |
| |
| using | VirtualHostDataMap = ServiceSet< HostData > |
| |
| using | JSEngine = ServiceValue< JSRuntimeOptions > |
| |
| using | JwtIssuer = std::string |
| |
| using | JwtKeyId = std::string |
| |
| using | Cert = std::vector< uint8_t > |
| |
| using | PublicKey = std::vector< uint8_t > |
| |
| using | JwtPublicSigningKeysMetadata = ServiceMap< JwtKeyId, std::vector< OpenIDJWKMetadata > > |
| |
| using | JwtPublicSigningKeysMetadataLegacy = ServiceMap< JwtKeyId, std::vector< OpenIDJWKMetadataLegacy > > |
| |
| using | JwtIssuers = ServiceMap< JwtIssuer, JwtIssuerMetadata > |
| |
| using | MemberInfo = ServiceMap< MemberId, MemberDetails > |
| |
| using | MemberCerts = ccf::kv::RawCopySerialisedMap< MemberId, ccf::crypto::Pem > |
| |
| using | MemberPublicEncryptionKeys = ccf::kv::RawCopySerialisedMap< MemberId, ccf::crypto::Pem > |
| |
| using | MemberAcks = ServiceMap< MemberId, MemberAck > |
| |
| using | Module = std::string |
| |
| using | Modules = ccf::kv::RawCopySerialisedMap< std::string, Module > |
| |
| using | ModulesQuickJsBytecode = ccf::kv::RawCopySerialisedMap< std::string, std::vector< uint8_t > > |
| |
| using | ModulesQuickJsVersion = ccf::kv::RawCopySerialisedValue< std::string > |
| |
| using | InterpreterFlush = ServiceValue< bool > |
| |
| using | Nodes = ServiceMap< NodeId, NodeInfo > |
| |
| using | NodeEndorsedCertificates = ccf::kv::RawCopySerialisedMap< NodeId, ccf::crypto::Pem > |
| |
| using | ProposalId = std::string |
| |
| using | Service = ServiceValue< ServiceInfo > |
| |
| using | SnpMeasurements = ServiceMap< pal::SnpAttestationMeasurement, CodeStatus > |
| |
| using | SnpTcbVersionMap = ServiceMap< std::string, pal::snp::TcbVersionPolicy > |
| |
| using | UserCerts = ccf::kv::RawCopySerialisedMap< UserId, ccf::crypto::Pem > |
| |
| using | UserInfo = ServiceMap< UserId, UserDetails > |
| |
| using | DID = std::string |
| |
| using | Feed = std::string |
| |
| using | FeedToEndorsementsDataMap = std::map< Feed, UVMEndorsementsData > |
| |
| using | SNPUVMEndorsements = ServiceMap< DID, FeedToEndorsementsDataMap > |
| |
| using | VirtualMeasurements = ServiceMap< pal::VirtualAttestationMeasurement, CodeStatus > |
| |
| using | View = uint64_t |
| |
| using | SeqNo = uint64_t |
| |
| using | QUICSessionImpl = quic::QUICEchoSession |
| |
| using | MsgNonce = uint64_t |
| |
| using | GcmHdr = ccf::crypto::FixedSizeGcmHeader< sizeof(MsgNonce)> |
| |
| using | NodeEncryptor = ccf::kv::TxEncryptor< ccf::LedgerSecrets, TxGcmHeader > |
| |
| using | HistoryTree = merkle::TreeT< sha256_byte_size, ccf::sha256_history > |
| |
| using | MerkleTxHistory = HashedTxHistory< MerkleTreeHistory > |
| |
| using | LedgerSecretPtr = std::shared_ptr< LedgerSecret > |
| |
| using | LedgerSecretsMap = std::map< ccf::kv::Version, LedgerSecretPtr > |
| |
| using | VersionedLedgerSecret = LedgerSecretsMap::value_type |
| |
| using | RaftType = aft::Aft<::consensus::LedgerEnclave > |
| |
| using | Node2NodeMsg = uint64_t |
| |
| using | QuoteEndorsementsFetchedCallback = std::function< void(std::vector< uint8_t > &&endorsements)> |
| |
| using | Server = pal::snp::EndorsementEndpointsConfiguration::Server |
| |
| using | ConsensusConfig = std::map< std::string, ConsensusNodeConfig > |
| |
| using | ExtendedState = std::tuple< NodeStartupState, std::optional< ccf::kv::Version >, std::optional< ccf::kv::Version > > |
| |
| using | RecoveredEncryptedLedgerSecrets = std::list< EncryptedLedgerSecretInfo > |
| |
| using | DynamicEndpoints = ccf::ServiceMap< endpoints::EndpointKey, endpoints::EndpointProperties > |
| |
| using | GovernanceHistory = ServiceMap< MemberId, SignedReq > |
| |
| using | COSEGovernanceHistory = ServiceMap< MemberId, std::vector< uint8_t > > |
| |
| using | COSERecentProposals = ServiceMap< std::string, ProposalId > |
| |
| using | Nonce = ccf::crypto::Sha256Hash |
| |
| using | PreviousServiceIdentity = ServiceValue< ccf::crypto::Pem > |
| |
| using | PreviousServiceLastSignedRoot = ServiceValue< ccf::crypto::Sha256Hash > |
| |
| using | PreviousServiceIdentityEndorsement = ServiceValue< CoseEndorsement > |
| |
| using | LastRecoveryType = ServiceValue< RecoveryType > |
| |
| using | LedgerSecretsForNodes = std::map< NodeId, EncryptedLedgerSecrets > |
| |
| using | Secrets = ServiceValue< LedgerSecretsForNodes > |
| |
| using | EncryptedShare = std::vector< uint8_t > |
| |
| using | EncryptedSharesMap = std::map< MemberId, EncryptedShare > |
| |
| using | EncryptedLedgerSecretsInfo = ServiceValue< EncryptedLedgerSecretInfo > |
| |
| using | Signatures = ServiceValue< PrimarySignature > |
| |
| using | SerialisedMerkleTree = ccf::kv::RawCopySerialisedValue< std::vector< uint8_t > > |
| |
| using | CoseSignature = std::vector< uint8_t > |
| |
| using | CoseSignatures = ServiceValue< CoseSignature > |
| |
| using | SnapshotEvidence = ServiceValue< SnapshotHash > |
| |
| using | EncryptedSubmittedShare = std::vector< uint8_t > |
| |
| using | EncryptedSubmittedShares = ServiceMap< MemberId, EncryptedSubmittedShare > |
| |
|
| std::unique_ptr< ccf::endpoints::EndpointRegistry > | make_user_endpoints (ccf::AbstractNodeContext &context) |
| |
| constexpr char const * | api_result_to_str (ApiResult result) |
| |
| constexpr char const * | invalid_args_reason_to_str (InvalidArgsReason reason) |
| |
| void | to_json (nlohmann::json &j, const ClaimsDigest &hash) |
| |
| void | from_json (const nlohmann::json &j, ClaimsDigest &hash) |
| |
| std::string | schema_name (const ClaimsDigest *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const ClaimsDigest *) |
| |
| | DECLARE_JSON_ENUM (QuoteFormat, {{QuoteFormat::oe_sgx_v1, "OE_SGX_v1"}, {QuoteFormat::insecure_virtual, "Insecure_Virtual"}, {QuoteFormat::amd_sev_snp_v1, "AMD_SEV_SNP_v1"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (QuoteInfo) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (QuoteInfo, format, quote, endorsements) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (QuoteInfo, uvm_endorsements, endorsed_tcb) |
| |
| bool | validate_issuer (const std::string &iss, const std::optional< std::string > &tid, std::string constraint) |
| |
| template<typename FmtExtender > |
| void | to_json (nlohmann::json &j, const EntityId< FmtExtender > &entity_id) |
| |
| template<typename FmtExtender > |
| void | from_json (const nlohmann::json &j, EntityId< FmtExtender > &entity_id) |
| |
| template<typename FmtExtender > |
| std::string | schema_name (const EntityId< FmtExtender > *) |
| |
| template<typename FmtExtender > |
| void | fill_json_schema (nlohmann::json &schema, const EntityId< FmtExtender > *) |
| |
| | DECLARE_JSON_ENUM (ActionFormat, {{ActionFormat::COSE, "COSE"}, {ActionFormat::JSON, "JSON"}}) |
| |
| jsonhandler::JsonAdapterResponse | make_success () |
| |
| jsonhandler::JsonAdapterResponse | make_success (nlohmann::json &&result_payload) |
| |
| jsonhandler::JsonAdapterResponse | make_success (const nlohmann::json &result_payload) |
| |
| jsonhandler::JsonAdapterResponse | make_error (ccf::http_status status, const std::string &code, const std::string &msg) |
| |
| jsonhandler::JsonAdapterResponse | make_redirect (ccf::http_status status) |
| |
| endpoints::EndpointFunction | json_adapter (const HandlerJsonParamsAndForward &f) |
| |
| endpoints::ReadOnlyEndpointFunction | json_read_only_adapter (const ReadOnlyHandlerWithJson &f) |
| |
| endpoints::CommandEndpointFunction | json_command_adapter (const CommandHandlerWithJson &f) |
| |
| | DECLARE_JSON_TYPE (COSESignaturesConfig) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (COSESignaturesConfig, issuer, subject) |
| |
| QuoteVerificationResult | verify_tcb_version_against_store (ccf::kv::ReadOnlyTx &tx, const QuoteInfo "e_info) |
| |
| | DECLARE_JSON_TYPE (ODataAuthErrorDetails) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ODataAuthErrorDetails, auth_policy, code, message) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (ODataJSExceptionDetails) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ODataJSExceptionDetails, code, message) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (ODataJSExceptionDetails, trace) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (ODataError) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ODataError, code, message) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (ODataError, details) |
| |
| | DECLARE_JSON_TYPE (ODataErrorResponse) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ODataErrorResponse, error) |
| |
| nlohmann::json | describe_receipt_v1 (const TxReceiptImpl &receipt) |
| |
| ReceiptPtr | describe_receipt_v2 (const TxReceiptImpl &in) |
| |
| std::optional< std::vector< uint8_t > > | describe_merkle_proof_v1 (const TxReceiptImpl &receipt) |
| |
| std::optional< SerialisedCoseEndorsements > | describe_cose_endorsements_v1 (const TxReceiptImpl &receipt) |
| |
| std::optional< SerialisedCoseSignature > | describe_cose_signature_v1 (const TxReceiptImpl &receipt) |
| |
| void | to_json (nlohmann::json &j, const ProofReceipt::Components &components) |
| |
| void | from_json (const nlohmann::json &j, ProofReceipt::Components &components) |
| |
| std::string | schema_name (const ProofReceipt::Components *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const ProofReceipt::Components *) |
| |
| void | to_json (nlohmann::json &j, const ProofReceipt::ProofStep &step) |
| |
| void | from_json (const nlohmann::json &j, ProofReceipt::ProofStep &step) |
| |
| std::string | schema_name (const ProofReceipt::ProofStep *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const ProofReceipt::ProofStep *) |
| |
| void | to_json (nlohmann::json &j, const ReceiptPtr &receipt) |
| |
| void | from_json (const nlohmann::json &j, ReceiptPtr &receipt) |
| |
| std::string | schema_name (const ReceiptPtr *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const ReceiptPtr *) |
| |
| template<typename T > |
| void | add_schema_components (T &helper, nlohmann::json &schema, const ProofReceipt::Components *comp) |
| |
| template<typename T > |
| void | add_schema_components (T &helper, nlohmann::json &schema, const ProofReceipt::ProofStep *ps) |
| |
| template<typename T > |
| void | add_schema_components (T &helper, nlohmann::json &schema, const ReceiptPtr *r) |
| |
| std::optional< ccf::ClaimsDigest::Digest > | get_create_tx_claims_digest (ccf::kv::ReadOnlyTx &tx) |
| |
| void | to_json (nlohmann::json &j, const RESTVerb &verb) |
| |
| void | from_json (const nlohmann::json &j, RESTVerb &verb) |
| |
| std::string | schema_name (const RESTVerb *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const RESTVerb *) |
| |
| int | run (int argc, char **argv) |
| |
| | DECLARE_JSON_TYPE (ACMEClientConfig) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ACMEClientConfig, ca_certs, directory_url, service_dns_name, contact, terms_of_service_agreed, challenge_type) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (ACMEClientConfig, not_before, not_after, challenge_server_interface) |
| |
| | DECLARE_JSON_ENUM (CodeStatus, {{CodeStatus::ALLOWED_TO_JOIN, "AllowedToJoin"}}) |
| |
| | DECLARE_JSON_ENUM (NodeStatus, {{NodeStatus::PENDING, "Pending"}, {NodeStatus::TRUSTED, "Trusted"}, {NodeStatus::RETIRED, "Retired"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_BASE_AND_OPTIONAL_FIELDS (NodeInfo, NodeInfoNetwork) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeInfo, quote_info, encryption_pub_key, status) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (NodeInfo, cert, ledger_secret_seqno, code_digest, certificate_signing_request, public_key, node_data, retired_committed) |
| |
| | DECLARE_JSON_ENUM (Authority, {{Authority::NODE, "Node"}, {Authority::SERVICE, "Service"}, {Authority::ACME, "ACME"}, {Authority::UNSECURED, "Unsecured"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (Endorsement) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (Endorsement, authority) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (Endorsement, acme_configuration) |
| |
| | DECLARE_JSON_TYPE (NodeInfoNetwork_v1) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeInfoNetwork_v1, rpchost, pubhost, nodehost, nodeport, rpcport, pubport) |
| |
| | DECLARE_JSON_ENUM (RedirectionResolutionKind, {{RedirectionResolutionKind::NodeByRole, "NodeByRole"}, {RedirectionResolutionKind::StaticAddress, "StaticAddress"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (RedirectionResolverConfig) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (RedirectionResolverConfig, kind) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (RedirectionResolverConfig, target) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (NodeInfoNetwork_v2::NetInterface::Redirections) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeInfoNetwork_v2::NetInterface::Redirections) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (NodeInfoNetwork_v2::NetInterface::Redirections, to_primary, to_backup) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (NodeInfoNetwork_v2::NetInterface) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeInfoNetwork_v2::NetInterface, bind_address) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (NodeInfoNetwork_v2::NetInterface, endorsement, max_open_sessions_soft, max_open_sessions_hard, published_address, protocol, app_protocol, http_configuration, accepted_endpoints, forwarding_timeout_ms, redirections) |
| |
| | DECLARE_JSON_TYPE (NodeInfoNetwork_v2::ACME) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeInfoNetwork_v2::ACME, configurations) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (NodeInfoNetwork_v2) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeInfoNetwork_v2, node_to_node_interface, rpc_interfaces) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (NodeInfoNetwork_v2, acme, will_locally_seal_ledger_secrets) |
| |
| void | to_json (nlohmann::json &j, const NodeInfoNetwork &nin) |
| |
| void | from_json (const nlohmann::json &j, NodeInfoNetwork &nin) |
| |
| void | to_json (nlohmann::json &j, const JSRuntimeOptions &options) |
| |
| void | from_json (const nlohmann::json &j, JSRuntimeOptions &options) |
| |
| std::string | schema_name (const JSRuntimeOptions *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const JSRuntimeOptions *) |
| |
| | DECLARE_JSON_ENUM (JwtIssuerKeyFilter, {{JwtIssuerKeyFilter::All, "all"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (JwtIssuerMetadata) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (JwtIssuerMetadata) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (JwtIssuerMetadata, ca_cert_bundle_name, auto_refresh) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (OpenIDJWKMetadata) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (OpenIDJWKMetadata, issuer, public_key) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (OpenIDJWKMetadata, constraint) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (OpenIDJWKMetadataLegacy) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (OpenIDJWKMetadataLegacy, issuer, cert) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (OpenIDJWKMetadataLegacy, constraint) |
| |
| | DECLARE_JSON_ENUM (MemberStatus, {{MemberStatus::ACCEPTED, "Accepted"}, {MemberStatus::ACTIVE, "Active"}}) |
| |
| | DECLARE_JSON_ENUM (MemberRecoveryRole, {{MemberRecoveryRole::NonParticipant, "NonParticipant"}, {MemberRecoveryRole::Participant, "Participant"}, {MemberRecoveryRole::Owner, "Owner"}}) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (NewMember, encryption_pub_key, member_data, recovery_role) |
| |
| NodeId | compute_node_id_from_pubk_der (const std::vector< uint8_t > &node_pubk_der) |
| |
| NodeId | compute_node_id_from_cert_der (const std::vector< uint8_t > &node_cert_der) |
| |
| NodeId | compute_node_id_from_kp (const ccf::crypto::KeyPairPtr &node_sign_kp) |
| |
| | DECLARE_JSON_ENUM (ProposalState, {{ProposalState::OPEN, "Open"}, {ProposalState::ACCEPTED, "Accepted"}, {ProposalState::WITHDRAWN, "Withdrawn"}, {ProposalState::REJECTED, "Rejected"}, {ProposalState::FAILED, "Failed"}, {ProposalState::DROPPED, "Dropped"}}) |
| |
| | DECLARE_JSON_ENUM (ServiceStatus, {{ServiceStatus::OPENING, "Opening"}, {ServiceStatus::OPEN, "Open"}, {ServiceStatus::WAITING_FOR_RECOVERY_SHARES, "WaitingForRecoveryShares"}, {ServiceStatus::RECOVERING, "Recovering"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (ServiceInfo) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ServiceInfo, cert, status) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (ServiceInfo, previous_service_identity_version, recovery_count, service_data, current_service_create_txid) |
| |
| | DECLARE_JSON_TYPE (UVMEndorsementsData) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (UVMEndorsementsData, svn) |
| |
| void | to_json (nlohmann::json &j, const TxID &tx_id) |
| |
| void | from_json (const nlohmann::json &j, TxID &tx_id) |
| |
| std::string | schema_name (const TxID *) |
| |
| void | fill_json_schema (nlohmann::json &schema, const TxID *) |
| |
| constexpr char const * | tx_status_to_str (TxStatus status) |
| |
| | DECLARE_JSON_ENUM (TxStatus, {{TxStatus::Unknown, tx_status_to_str(TxStatus::Unknown)}, {TxStatus::Pending, tx_status_to_str(TxStatus::Pending)}, {TxStatus::Committed, tx_status_to_str(TxStatus::Committed)}, {TxStatus::Invalid, tx_status_to_str(TxStatus::Invalid)}}) |
| |
| | DECLARE_JSON_ENUM (LoggerLevel, {{LoggerLevel::TRACE, "Trace"}, {LoggerLevel::DEBUG, "Debug"}, {LoggerLevel::INFO, "Info"}, {LoggerLevel::FAIL, "Fail"}, {LoggerLevel::FATAL, "Fatal"}}) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::NodeCertificateInfo) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::NodeCertificateInfo, subject_name, subject_alt_names, curve_id, initial_validity_days) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::Ledger) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig::Ledger) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::Ledger, directory, read_only_directories, chunk_size) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::LedgerSignatures) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig::LedgerSignatures) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::LedgerSignatures, tx_count, delay) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::JWT) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig::JWT) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::JWT, key_refresh_interval) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::Attestation::Environment) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig::Attestation::Environment) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::Attestation::Environment, security_policy, uvm_endorsements, snp_endorsements) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::Attestation) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig::Attestation) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::Attestation, snp_endorsements_servers, environment, snp_security_policy_file, snp_uvm_endorsements_file, snp_endorsements_file) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig::Snapshots) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig::Snapshots) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig::Snapshots, directory, tx_count, read_only_directory) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CCFConfig) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CCFConfig, network) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CCFConfig, worker_threads, node_certificate, consensus, ledger, ledger_signatures, jwt, attestation, snapshots, node_to_node_message_limit, historical_cache_soft_limit) |
| |
| | DECLARE_JSON_TYPE (StartupConfig::Start) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (StartupConfig::Start, members, constitution, service_configuration) |
| |
| | DECLARE_JSON_TYPE (StartupConfig::Join) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (StartupConfig::Join, target_rpc_address, retry_timeout, service_cert, follow_redirect) |
| |
| | DECLARE_JSON_TYPE (StartupConfig::Recover) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (StartupConfig::Recover, previous_service_identity, previous_sealed_ledger_secret_location) |
| |
| | DECLARE_JSON_TYPE_WITH_BASE (StartupConfig, CCFConfig) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (StartupConfig, startup_host_time, snapshot_tx_interval, initial_service_certificate_validity_days, service_subject_name, cose_signatures, service_data, node_data, start, join, recover, sealed_ledger_secret_location) |
| |
| bool | is_valid_actor (const std::string &actor) |
| |
| constexpr auto | get_actor_prefix (ActorsType at) |
| |
| std::string | get_combined_schema_name (const AllOfAuthnPolicy::Policies &policies) |
| |
| std::shared_ptr<::http::HttpRpcContext > | make_rpc_context (std::shared_ptr< ccf::SessionContext > s, const std::vector< uint8_t > &packed) |
| |
| std::shared_ptr<::http::HttpRpcContext > | make_fwd_rpc_context (std::shared_ptr< ccf::SessionContext > s, const std::vector< uint8_t > &packed, ccf::FrameFormat frame_format) |
| |
| LedgerSecretPtr | make_ledger_secret () |
| |
| std::vector< uint8_t > | decrypt_previous_ledger_secret_raw (const LedgerSecretPtr &ledger_secret, const std::vector< uint8_t > &encrypted_previous_secret_raw) |
| |
| std::string | get_sealing_filename (const kv::Version &version) |
| |
| std::optional< kv::Version > | version_of_filename (const std::string &path) |
| |
| crypto::GcmCipher | aes_gcm_sealing (std::span< const uint8_t > raw_key, std::span< const uint8_t > plaintext, const std::span< uint8_t > &aad) |
| |
| std::vector< uint8_t > | aes_gcm_unsealing (std::span< const uint8_t > raw_key, const std::vector< uint8_t > &sealed_text, const std::span< uint8_t > &aad) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (SealedLedgerSecretAAD) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (SealedLedgerSecretAAD) |
| |
| | DECLARE_JSON_TYPE (SealedLedgerSecret) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (SealedLedgerSecret, ciphertext, aad_text) |
| |
| void | seal_ledger_secret_to_disk (const std::string &sealed_secret_dir, const ccf::pal::snp::TcbVersionRaw &tcb_version, const kv::Version &version, const LedgerSecretPtr &ledger_secret) |
| |
| std::optional< LedgerSecretPtr > | unseal_ledger_secret_from_disk (ccf::kv::Version expected_version, const files::fs::path &ledger_secret_path) |
| |
| LedgerSecretPtr | find_and_unseal_ledger_secret_from_disk (const std::string &sealed_secret_dir, kv::Version max_version) |
| |
| void | reset_data (std::vector< uint8_t > &data) |
| |
| bool | verify_enclave_measurement_against_uvm_endorsements (ccf::kv::ReadOnlyTx &tx, const pal::PlatformAttestationMeasurement "e_measurement, const std::vector< uint8_t > &uvm_endorsements) |
| |
| QuoteVerificationResult | verify_enclave_measurement_against_store (ccf::kv::ReadOnlyTx &tx, const pal::PlatformAttestationMeasurement "e_measurement, const QuoteFormat "e_format, const std::optional< std::vector< uint8_t > > &uvm_endorsements=std::nullopt) |
| |
| QuoteVerificationResult | verify_quoted_node_public_key (const std::vector< uint8_t > &expected_node_public_key, const ccf::crypto::Sha256Hash "ed_hash) |
| |
| QuoteVerificationResult | verify_host_data_against_store (ccf::kv::ReadOnlyTx &tx, const QuoteInfo "e_info) |
| |
| std::optional< ccf::ClaimsDigest::Digest > | __attribute__ ((weak)) get_create_tx_claims_digest(ccf |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (Quote) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (Quote, node_id, raw, endorsements, format) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (Quote, measurement, uvm_endorsements) |
| |
| | DECLARE_JSON_TYPE_WITH_BASE (Attestation, Quote) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (Attestation) |
| |
| | DECLARE_JSON_TYPE (GetQuotes::Out) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (GetQuotes::Out, quotes) |
| |
| | DECLARE_JSON_TYPE (GetAttestations::Out) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (GetAttestations::Out, attestations) |
| |
| | DECLARE_JSON_TYPE (NodeMetrics) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeMetrics, sessions) |
| |
| | DECLARE_JSON_TYPE (JavaScriptMetrics) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (JavaScriptMetrics, bytecode_size, bytecode_used, max_heap_size, max_stack_size, max_execution_time, max_cached_interpreters) |
| |
| | DECLARE_JSON_TYPE (SetJwtPublicSigningKeys) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (SetJwtPublicSigningKeys, issuer, jwks) |
| |
| | DECLARE_JSON_TYPE (ConsensusNodeConfig) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ConsensusNodeConfig, address) |
| |
| | DECLARE_JSON_TYPE (ConsensusConfigDetails) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (ConsensusConfigDetails, details) |
| |
| | DECLARE_JSON_TYPE (SelfSignedNodeCertificateInfo) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (SelfSignedNodeCertificateInfo, self_signed_certificate) |
| |
| | DECLARE_JSON_TYPE (GetServicePreviousIdentity::Out) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (GetServicePreviousIdentity::Out, previous_service_identity) |
| |
| bool | matches_uvm_roots_of_trust (const pal::UVMEndorsements &endorsements, const std::vector< pal::UVMEndorsements > &uvm_roots_of_trust) |
| |
| pal::UVMEndorsements | verify_uvm_endorsements (const std::vector< uint8_t > &uvm_endorsements_raw, const pal::PlatformAttestationMeasurement &uvm_measurement, const std::vector< pal::UVMEndorsements > &uvm_roots_of_trust, bool enforce_uvm_roots_of_trust) |
| |
| pal::UVMEndorsements | verify_uvm_endorsements_against_roots_of_trust (const std::vector< uint8_t > &uvm_endorsements_raw, const pal::PlatformAttestationMeasurement &uvm_measurement, const std::vector< pal::UVMEndorsements > &uvm_roots_of_trust) |
| |
| | DECLARE_JSON_TYPE (UVMEndorsementsPayload) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS_WITH_RENAMES (UVMEndorsementsPayload, sevsnpvm_guest_svn, "x-ms-sevsnpvm-guestsvn", sevsnpvm_launch_measurement, "x-ms-sevsnpvm-launchmeasurement") |
| |
| ccf::TxID | previous_tx_if_recovery (ccf::TxID txid) |
| |
| ccf::TxID | next_tx_if_recovery (ccf::TxID txid) |
| |
| std::shared_ptr< ccf::kv::Store > | make_store () |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (ServiceConfiguration, consensus, reconfiguration_type, maximum_node_certificate_validity_days, maximum_service_certificate_validity_days, recent_cose_proposals_window_size) using Configuration |
| |
| | DECLARE_JSON_TYPE (NodeSignature) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (NodeSignature, sig, node, hashed_nonce) |
| |
| | DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS (CoseEndorsement) |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (CoseEndorsement, endorsement, endorsement_epoch_begin, endorsing_key) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (CoseEndorsement, previous_version, endorsement_epoch_end) |
| |
| | DECLARE_JSON_ENUM (RecoveryType, {{RecoveryType::NONE, "None"}, {RecoveryType::RECOVERY_SHARES, "RECOVERY_SHARES"}, {RecoveryType::LOCAL_UNSEALING, "LOCAL_UNSEALING"}}) |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (EncryptedLedgerSecret, previous_secret_stored_version) using EncryptedLedgerSecrets |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (RecoverySharesInfo, wrapped_latest_ledger_secret, encrypted_shares) DECLARE_JSON_OPTIONAL_FIELDS(RecoverySharesInfo |
| |
| | DECLARE_JSON_REQUIRED_FIELDS (PreviousLedgerSecretInfo, encrypted_data, version) DECLARE_JSON_OPTIONAL_FIELDS(PreviousLedgerSecretInfo |
| |
| | DECLARE_JSON_OPTIONAL_FIELDS (EncryptedLedgerSecretInfo, previous_ledger_secret, next_version) using RecoveryShares |
| |
| | DECLARE_JSON_TYPE_WITH_BASE_AND_OPTIONAL_FIELDS (PrimarySignature, NodeSignature) DECLARE_JSON_REQUIRED_FIELDS(PrimarySignature |
| |
| root | DECLARE_JSON_OPTIONAL_FIELDS (PrimarySignature, cert) |
| |
