CCF
Loading...
Searching...
No Matches
startup_config.h
Go to the documentation of this file.
1// Copyright (c) Microsoft Corporation. All rights reserved.
2// Licensed under the Apache 2.0 License.
3#pragma once
4
5#include "ccf/crypto/curve.h"
6#include "ccf/ds/unit_strings.h"
7#include "ccf/node/cose_signatures_config.h"
8#include "ccf/pal/attestation_sev_snp_endorsements.h"
9#include "ccf/service/consensus_config.h"
10#include "ccf/service/node_info_network.h"
11#include "ccf/service/service_config.h"
12#include "ccf/service/tables/host_data.h"
13#include "ccf/service/tables/members.h"
14
15#include <optional>
16#include <string>
17#include <vector>
18
19namespace ccf
20{
21 struct CCFConfig
22 {
23 size_t worker_threads = 0;
24
25 // 2**24.5 as per RFC8446 Section 5.5
26 size_t node_to_node_message_limit = 23'726'566;
27
28 ccf::ds::SizeString historical_cache_soft_limit = {"512MB"};
29
30 ccf::consensus::Configuration consensus = {};
31 ccf::NodeInfoNetwork network = {};
32
33 struct NodeCertificateInfo
34 {
35 std::string subject_name = "CN=CCF Node";
36 std::vector<std::string> subject_alt_names = {};
37 ccf::crypto::CurveID curve_id = ccf::crypto::CurveID::SECP384R1;
38 size_t initial_validity_days = 1;
39
40 bool operator==(const NodeCertificateInfo&) const = default;
41 };
42 NodeCertificateInfo node_certificate = {};
43
44 struct Ledger
45 {
46 std::string directory = "ledger";
47 std::vector<std::string> read_only_directories = {};
48 ccf::ds::SizeString chunk_size = {"5MB"};
49
50 bool operator==(const Ledger&) const = default;
51 };
52 Ledger ledger = {};
53
54 struct LedgerSignatures
55 {
56 size_t tx_count = 5000;
57 ccf::ds::TimeString delay = {"1000ms"};
58
59 bool operator==(const LedgerSignatures&) const = default;
60 };
61 LedgerSignatures ledger_signatures = {};
62
63 struct JWT
64 {
65 ccf::ds::TimeString key_refresh_interval = {"30min"};
66
67 bool operator==(const JWT&) const = default;
68 };
69 JWT jwt = {};
70
71 struct Attestation
72 {
73 ccf::pal::snp::EndorsementsServers snp_endorsements_servers = {};
74 std::optional<std::string> snp_security_policy_file = std::nullopt;
75 std::optional<std::string> snp_uvm_endorsements_file = std::nullopt;
76 std::optional<std::string> snp_endorsements_file = std::nullopt;
77
78 struct Environment
79 {
80 // Each of these contains the string read from the relevant file. It is
81 // expected to be a base-64 string.
82 std::optional<std::string> security_policy = std::nullopt;
83 std::optional<std::string> uvm_endorsements = std::nullopt;
84 std::optional<std::string> snp_endorsements = std::nullopt;
85
86 bool operator==(const Environment&) const = default;
87 };
88 Environment environment = {};
89
90 bool operator==(const Attestation&) const = default;
91 };
92 Attestation attestation = {};
93
94 struct Snapshots
95 {
96 std::string directory = "snapshots";
97 size_t tx_count = 10'000;
98 std::optional<std::string> read_only_directory = std::nullopt;
99
100 bool operator==(const Snapshots&) const = default;
101 };
102 Snapshots snapshots = {};
103 };
104
105 struct StartupConfig : CCFConfig
106 {
107 StartupConfig() = default;
108 StartupConfig(const CCFConfig& common_base) : CCFConfig(common_base) {}
109
110 std::string startup_host_time;
111 size_t snapshot_tx_interval = 10'000;
112
113 // Only if starting or recovering
114 size_t initial_service_certificate_validity_days = 1;
115 std::string service_subject_name = "CN=CCF Service";
116 ccf::COSESignaturesConfig cose_signatures;
117
118 std::optional<std::string> sealed_ledger_secret_location;
119
120 nlohmann::json service_data = nullptr;
121
122 nlohmann::json node_data = nullptr;
123
124 struct Start
125 {
126 std::vector<ccf::NewMember> members;
127 std::string constitution;
128 ccf::ServiceConfiguration service_configuration;
129
130 bool operator==(const Start& other) const = default;
131 };
132 Start start = {};
133
141 Join join = {};
142
143 struct Recover
144 {
145 std::optional<std::vector<uint8_t>> previous_service_identity =
146 std::nullopt;
147 std::optional<std::string> previous_sealed_ledger_secret_location =
148 std::nullopt;
149 };
150 Recover recover = {};
151 };
152}
attestation_sev_snp_endorsements.h
consensus_config.h
cose_signatures_config.h
host_data.h
ccf::crypto::CurveID
CurveID
Definition curve.h:18
ccf::crypto::CurveID::SECP384R1
@ SECP384R1
The SECP384R1 curve.
ccf::pal::snp::EndorsementsServers
std::vector< EndorsementsServer > EndorsementsServers
Definition attestation_sev_snp_endorsements.h:87
ccf
Definition app_interface.h:14
consensus
Definition consensus_types.h:23
snapshots
Definition fetch.h:35
node_info_network.h
service_config.h
ccf::CCFConfig::Attestation::Environment
Definition startup_config.h:79
ccf::CCFConfig::Attestation::Environment::security_policy
std::optional< std::string > security_policy
Definition startup_config.h:82
ccf::CCFConfig::Attestation::Environment::uvm_endorsements
std::optional< std::string > uvm_endorsements
Definition startup_config.h:83
ccf::CCFConfig::Attestation::Environment::snp_endorsements
std::optional< std::string > snp_endorsements
Definition startup_config.h:84
ccf::CCFConfig::Attestation::Environment::operator==
bool operator==(const Environment &) const =default
ccf::CCFConfig::Attestation
Definition startup_config.h:72
ccf::CCFConfig::Attestation::snp_endorsements_servers
ccf::pal::snp::EndorsementsServers snp_endorsements_servers
Definition startup_config.h:73
ccf::CCFConfig::Attestation::snp_endorsements_file
std::optional< std::string > snp_endorsements_file
Definition startup_config.h:76
ccf::CCFConfig::Attestation::operator==
bool operator==(const Attestation &) const =default
ccf::CCFConfig::Attestation::snp_uvm_endorsements_file
std::optional< std::string > snp_uvm_endorsements_file
Definition startup_config.h:75
ccf::CCFConfig::Attestation::environment
Environment environment
Definition startup_config.h:88
ccf::CCFConfig::Attestation::snp_security_policy_file
std::optional< std::string > snp_security_policy_file
Definition startup_config.h:74
ccf::CCFConfig::JWT
Definition startup_config.h:64
ccf::CCFConfig::JWT::key_refresh_interval
ccf::ds::TimeString key_refresh_interval
Definition startup_config.h:65
ccf::CCFConfig::JWT::operator==
bool operator==(const JWT &) const =default
ccf::CCFConfig::LedgerSignatures
Definition startup_config.h:55
ccf::CCFConfig::LedgerSignatures::delay
ccf::ds::TimeString delay
Definition startup_config.h:57
ccf::CCFConfig::LedgerSignatures::operator==
bool operator==(const LedgerSignatures &) const =default
ccf::CCFConfig::LedgerSignatures::tx_count
size_t tx_count
Definition startup_config.h:56
ccf::CCFConfig::Ledger
Definition startup_config.h:45
ccf::CCFConfig::Ledger::directory
std::string directory
Definition startup_config.h:46
ccf::CCFConfig::Ledger::operator==
bool operator==(const Ledger &) const =default
ccf::CCFConfig::Ledger::chunk_size
ccf::ds::SizeString chunk_size
Definition startup_config.h:48
ccf::CCFConfig::Ledger::read_only_directories
std::vector< std::string > read_only_directories
Definition startup_config.h:47
ccf::CCFConfig::NodeCertificateInfo
Definition startup_config.h:34
ccf::CCFConfig::NodeCertificateInfo::curve_id
ccf::crypto::CurveID curve_id
Definition startup_config.h:37
ccf::CCFConfig::NodeCertificateInfo::subject_name
std::string subject_name
Definition startup_config.h:35
ccf::CCFConfig::NodeCertificateInfo::subject_alt_names
std::vector< std::string > subject_alt_names
Definition startup_config.h:36
ccf::CCFConfig::NodeCertificateInfo::initial_validity_days
size_t initial_validity_days
Definition startup_config.h:38
ccf::CCFConfig::NodeCertificateInfo::operator==
bool operator==(const NodeCertificateInfo &) const =default
ccf::CCFConfig::Snapshots
Definition startup_config.h:95
ccf::CCFConfig::Snapshots::directory
std::string directory
Definition startup_config.h:96
ccf::CCFConfig::Snapshots::operator==
bool operator==(const Snapshots &) const =default
ccf::CCFConfig::Snapshots::read_only_directory
std::optional< std::string > read_only_directory
Definition startup_config.h:98
ccf::CCFConfig::Snapshots::tx_count
size_t tx_count
Definition startup_config.h:97
ccf::CCFConfig
Definition startup_config.h:22
ccf::CCFConfig::node_to_node_message_limit
size_t node_to_node_message_limit
Definition startup_config.h:26
ccf::CCFConfig::network
ccf::NodeInfoNetwork network
Definition startup_config.h:31
ccf::CCFConfig::historical_cache_soft_limit
ccf::ds::SizeString historical_cache_soft_limit
Definition startup_config.h:28
ccf::CCFConfig::ledger_signatures
LedgerSignatures ledger_signatures
Definition startup_config.h:61
ccf::CCFConfig::jwt
JWT jwt
Definition startup_config.h:69
ccf::CCFConfig::ledger
Ledger ledger
Definition startup_config.h:52
ccf::CCFConfig::worker_threads
size_t worker_threads
Definition startup_config.h:23
ccf::CCFConfig::attestation
Attestation attestation
Definition startup_config.h:92
ccf::CCFConfig::node_certificate
NodeCertificateInfo node_certificate
Definition startup_config.h:42
ccf::COSESignaturesConfig
Definition cose_signatures_config.h:12
ccf::NodeInfoNetwork_v2::NetAddress
std::string NetAddress
Definition node_info_network.h:86
ccf::NodeInfoNetwork
Definition node_info_network.h:196
ccf::ServiceConfiguration
Definition service_config.h:14
ccf::StartupConfig::Join
Definition startup_config.h:135
ccf::StartupConfig::Join::service_cert
std::vector< uint8_t > service_cert
Definition startup_config.h:138
ccf::StartupConfig::Join::follow_redirect
bool follow_redirect
Definition startup_config.h:139
ccf::StartupConfig::Join::target_rpc_address
ccf::NodeInfoNetwork::NetAddress target_rpc_address
Definition startup_config.h:136
ccf::StartupConfig::Join::retry_timeout
ccf::ds::TimeString retry_timeout
Definition startup_config.h:137
ccf::StartupConfig::Recover
Definition startup_config.h:144
ccf::StartupConfig::Recover::previous_service_identity
std::optional< std::vector< uint8_t > > previous_service_identity
Definition startup_config.h:145
ccf::StartupConfig::Recover::previous_sealed_ledger_secret_location
std::optional< std::string > previous_sealed_ledger_secret_location
Definition startup_config.h:147
ccf::StartupConfig::Start
Definition startup_config.h:125
ccf::StartupConfig::Start::constitution
std::string constitution
Definition startup_config.h:127
ccf::StartupConfig::Start::members
std::vector< ccf::NewMember > members
Definition startup_config.h:126
ccf::StartupConfig::Start::service_configuration
ccf::ServiceConfiguration service_configuration
Definition startup_config.h:128
ccf::StartupConfig::Start::operator==
bool operator==(const Start &other) const =default
ccf::StartupConfig
Definition startup_config.h:106
ccf::StartupConfig::initial_service_certificate_validity_days
size_t initial_service_certificate_validity_days
Definition startup_config.h:114
ccf::StartupConfig::snapshot_tx_interval
size_t snapshot_tx_interval
Definition startup_config.h:111
ccf::StartupConfig::cose_signatures
ccf::COSESignaturesConfig cose_signatures
Definition startup_config.h:116
ccf::StartupConfig::StartupConfig
StartupConfig()=default
ccf::StartupConfig::service_data
nlohmann::json service_data
Definition startup_config.h:120
ccf::StartupConfig::StartupConfig
StartupConfig(const CCFConfig &common_base)
Definition startup_config.h:108
ccf::StartupConfig::start
Start start
Definition startup_config.h:132
ccf::StartupConfig::join
Join join
Definition startup_config.h:141
ccf::StartupConfig::sealed_ledger_secret_location
std::optional< std::string > sealed_ledger_secret_location
Definition startup_config.h:118
ccf::StartupConfig::node_data
nlohmann::json node_data
Definition startup_config.h:122
ccf::StartupConfig::recover
Recover recover
Definition startup_config.h:150
ccf::StartupConfig::startup_host_time
std::string startup_host_time
Definition startup_config.h:110
ccf::StartupConfig::service_subject_name
std::string service_subject_name
Definition startup_config.h:115
ccf::consensus::Configuration
Definition consensus_config.h:11
ccf::ds::SizeString
Definition unit_strings.h:122
ccf::ds::TimeString
Definition unit_strings.h:159
unit_strings.h
Generated by doxygen 1.9.8