main/doxygen/startup__config_8h_source.html

// Copyright (c) Microsoft Corporation. All rights reserved.

// Licensed under the Apache 2.0 License.

#pragma once


#include "ccf/crypto/curve.h"

#include "ccf/ds/unit_strings.h"

#include "ccf/entity_id.h"

#include "ccf/node/cose_signatures_config.h"

#include "ccf/pal/attestation_sev_snp_endorsements.h"

#include "ccf/service/consensus_config.h"

#include "ccf/service/node_info_network.h"

#include "ccf/service/service_config.h"

#include "ccf/service/tables/host_data.h"

#include "ccf/service/tables/members.h"

#include "ccf/service/tables/self_healing_open.h"


#include <optional>

#include <string>

#include <vector>


namespace ccf

{


  struct CCFConfig

  {

    size_t worker_threads = 0;


    // 2**24.5 as per RFC8446 Section 5.5

    size_t node_to_node_message_limit = 23'726'566;


    ccf::ds::SizeString historical_cache_soft_limit = {"512MB"};


    ccf::consensus::Configuration consensus = {};

    ccf::NodeInfoNetwork network;


    struct NodeCertificateInfo

    {

      std::string subject_name = "CN=CCF Node";

      std::vector<std::string> subject_alt_names;

      ccf::crypto::CurveID curve_id = ccf::crypto::CurveID::SECP384R1;

      size_t initial_validity_days = 1;


      bool operator==(const NodeCertificateInfo&) const = default;

    };


    NodeCertificateInfo node_certificate = {};


    struct Ledger

    {

      std::string directory = "ledger";

      std::vector<std::string> read_only_directories;

      ccf::ds::SizeString chunk_size = {"5MB"};


      bool operator==(const Ledger&) const = default;

    };


    Ledger ledger = {};


    struct LedgerSignatures

    {

      size_t tx_count = 5000;

      ccf::ds::TimeString delay = {"1000ms"};


      bool operator==(const LedgerSignatures&) const = default;

    };


    LedgerSignatures ledger_signatures = {};


    struct JWT

    {

      ccf::ds::TimeString key_refresh_interval = {"30min"};


      bool operator==(const JWT&) const = default;

    };


    JWT jwt = {};


    struct Attestation

    {

      ccf::pal::snp::EndorsementsServers snp_endorsements_servers;

      std::optional<std::string> snp_security_policy_file = std::nullopt;

      std::optional<std::string> snp_uvm_endorsements_file = std::nullopt;

      std::optional<std::string> snp_endorsements_file = std::nullopt;


      struct Environment

      {

        // Each of these contains the string read from the relevant file. It is

        // expected to be a base-64 string.

        std::optional<std::string> security_policy = std::nullopt;

        std::optional<std::string> uvm_endorsements = std::nullopt;

        std::optional<std::string> snp_endorsements = std::nullopt;


        bool operator==(const Environment&) const = default;

      };


      Environment environment = {};


      bool operator==(const Attestation&) const = default;

    };


    Attestation attestation = {};


    struct Snapshots

    {

      std::string directory = "snapshots";

      size_t tx_count = 10'000;

      size_t min_tx_count = 2;

      ccf::ds::TimeString time_interval = {"0s"};

      std::optional<std::string> read_only_directory = std::nullopt;


      struct BackupFetch

      {

        bool enabled = false;

        size_t max_attempts = 3;

        ccf::ds::TimeString retry_interval = {"1000ms"};

        std::string target_rpc_interface = ccf::PRIMARY_RPC_INTERFACE;

        ccf::ds::SizeString max_size = {"200MB"};


        bool operator==(const BackupFetch&) const = default;

      };


      BackupFetch backup_fetch = {};


      bool operator==(const Snapshots&) const = default;

    };


    Snapshots snapshots = {};


    struct FilesCleanup

    {

      std::optional<size_t> max_snapshots = std::nullopt;

      std::optional<size_t> max_committed_ledger_chunks = std::nullopt;

      ccf::ds::TimeString interval = {"30s"};


      bool operator==(const FilesCleanup&) const = default;

    };


    FilesCleanup files_cleanup = {};

  };


  struct RecoveryDecisionProtocolConfig

  {

    std::vector<sealing_recovery::Location> expected_locations;

    ccf::ds::TimeString message_retry_timeout = {"100ms"};

    ccf::ds::TimeString failover_timeout = {"2000ms"};

    bool operator==(const RecoveryDecisionProtocolConfig&) const = default;

  };


  struct SealingRecoveryConfig

  {

    sealing_recovery::Location location;

    std::optional<RecoveryDecisionProtocolConfig> recovery_decision_protocol =

      std::nullopt;

    bool operator==(const SealingRecoveryConfig&) const = default;

  };


  struct StartupConfig : CCFConfig

  {

    StartupConfig() = default;

    StartupConfig(const CCFConfig& common_base) : CCFConfig(common_base) {}


    std::string startup_host_time;

    size_t snapshot_tx_interval = 10'000;


    // Only if starting or recovering

    size_t initial_service_certificate_validity_days = 1;

    std::string service_subject_name = "CN=CCF Service";

    ccf::COSESignaturesConfig cose_signatures;


    std::optional<SealingRecoveryConfig> sealing_recovery = std::nullopt;


    nlohmann::json service_data = nullptr;


    nlohmann::json node_data = nullptr;


    struct Start

    {

      std::vector<ccf::NewMember> members;

      std::string constitution;

      ccf::ServiceConfiguration service_configuration;


      bool operator==(const Start& other) const = default;

    };


    Start start = {};


    struct Join

    {

      ccf::NodeInfoNetwork::NetAddress target_rpc_address;

      ccf::ds::TimeString retry_timeout;

      std::vector<uint8_t> service_cert;

      bool follow_redirect{};

      bool fetch_recent_snapshot{};

      size_t fetch_snapshot_max_attempts{};

      ccf::ds::TimeString fetch_snapshot_retry_interval;

      ccf::ds::SizeString fetch_snapshot_max_size;

      std::optional<std::string> host_data_transparent_statement_path =

        std::nullopt;

    };


    Join join = {};


    struct Recover

    {

      std::optional<std::vector<uint8_t>> previous_service_identity =

        std::nullopt;

    };


    Recover recover = {};

  };


}

attestation_sev_snp_endorsements.h

consensus_config.h

cose_signatures_config.h

curve.h

entity_id.h

host_data.h

members.h

ccf::crypto::CurveID
CurveID
Definition curve.h:18

ccf::crypto::CurveID::SECP384R1
@ SECP384R1
The SECP384R1 curve.

ccf::pal::snp::EndorsementsServers
std::vector< EndorsementsServer > EndorsementsServers
Definition attestation_sev_snp_endorsements.h:87

ccf
Definition app_interface.h:13

consensus
Definition consensus_types.h:23

snapshots
Definition fetch.h:63

node_info_network.h

self_healing_open.h

service_config.h

ccf::CCFConfig::Attestation::Environment
Definition startup_config.h:81

ccf::CCFConfig::Attestation::Environment::security_policy
std::optional< std::string > security_policy
Definition startup_config.h:84

ccf::CCFConfig::Attestation::Environment::uvm_endorsements
std::optional< std::string > uvm_endorsements
Definition startup_config.h:85

ccf::CCFConfig::Attestation::Environment::snp_endorsements
std::optional< std::string > snp_endorsements
Definition startup_config.h:86

ccf::CCFConfig::Attestation::Environment::operator==
bool operator==(const Environment &) const =default

ccf::CCFConfig::Attestation
Definition startup_config.h:74

ccf::CCFConfig::Attestation::snp_endorsements_servers
ccf::pal::snp::EndorsementsServers snp_endorsements_servers
Definition startup_config.h:75

ccf::CCFConfig::Attestation::snp_endorsements_file
std::optional< std::string > snp_endorsements_file
Definition startup_config.h:78

ccf::CCFConfig::Attestation::operator==
bool operator==(const Attestation &) const =default

ccf::CCFConfig::Attestation::snp_uvm_endorsements_file
std::optional< std::string > snp_uvm_endorsements_file
Definition startup_config.h:77

ccf::CCFConfig::Attestation::environment
Environment environment
Definition startup_config.h:90

ccf::CCFConfig::Attestation::snp_security_policy_file
std::optional< std::string > snp_security_policy_file
Definition startup_config.h:76

ccf::CCFConfig::FilesCleanup
Definition startup_config.h:121

ccf::CCFConfig::FilesCleanup::max_snapshots
std::optional< size_t > max_snapshots
Definition startup_config.h:122

ccf::CCFConfig::FilesCleanup::max_committed_ledger_chunks
std::optional< size_t > max_committed_ledger_chunks
Definition startup_config.h:123

ccf::CCFConfig::FilesCleanup::operator==
bool operator==(const FilesCleanup &) const =default

ccf::CCFConfig::FilesCleanup::interval
ccf::ds::TimeString interval
Definition startup_config.h:124

ccf::CCFConfig::JWT
Definition startup_config.h:66

ccf::CCFConfig::JWT::key_refresh_interval
ccf::ds::TimeString key_refresh_interval
Definition startup_config.h:67

ccf::CCFConfig::JWT::operator==
bool operator==(const JWT &) const =default

ccf::CCFConfig::LedgerSignatures
Definition startup_config.h:57

ccf::CCFConfig::LedgerSignatures::delay
ccf::ds::TimeString delay
Definition startup_config.h:59

ccf::CCFConfig::LedgerSignatures::operator==
bool operator==(const LedgerSignatures &) const =default

ccf::CCFConfig::LedgerSignatures::tx_count
size_t tx_count
Definition startup_config.h:58

ccf::CCFConfig::Ledger
Definition startup_config.h:47

ccf::CCFConfig::Ledger::directory
std::string directory
Definition startup_config.h:48

ccf::CCFConfig::Ledger::operator==
bool operator==(const Ledger &) const =default

ccf::CCFConfig::Ledger::chunk_size
ccf::ds::SizeString chunk_size
Definition startup_config.h:50

ccf::CCFConfig::Ledger::read_only_directories
std::vector< std::string > read_only_directories
Definition startup_config.h:49

ccf::CCFConfig::NodeCertificateInfo
Definition startup_config.h:36

ccf::CCFConfig::NodeCertificateInfo::curve_id
ccf::crypto::CurveID curve_id
Definition startup_config.h:39

ccf::CCFConfig::NodeCertificateInfo::subject_name
std::string subject_name
Definition startup_config.h:37

ccf::CCFConfig::NodeCertificateInfo::subject_alt_names
std::vector< std::string > subject_alt_names
Definition startup_config.h:38

ccf::CCFConfig::NodeCertificateInfo::initial_validity_days
size_t initial_validity_days
Definition startup_config.h:40

ccf::CCFConfig::NodeCertificateInfo::operator==
bool operator==(const NodeCertificateInfo &) const =default

ccf::CCFConfig::Snapshots::BackupFetch
Definition startup_config.h:105

ccf::CCFConfig::Snapshots::BackupFetch::target_rpc_interface
std::string target_rpc_interface
Definition startup_config.h:109

ccf::CCFConfig::Snapshots::BackupFetch::retry_interval
ccf::ds::TimeString retry_interval
Definition startup_config.h:108

ccf::CCFConfig::Snapshots::BackupFetch::max_attempts
size_t max_attempts
Definition startup_config.h:107

ccf::CCFConfig::Snapshots::BackupFetch::max_size
ccf::ds::SizeString max_size
Definition startup_config.h:110

ccf::CCFConfig::Snapshots::BackupFetch::enabled
bool enabled
Definition startup_config.h:106

ccf::CCFConfig::Snapshots::BackupFetch::operator==
bool operator==(const BackupFetch &) const =default

ccf::CCFConfig::Snapshots
Definition startup_config.h:97

ccf::CCFConfig::Snapshots::time_interval
ccf::ds::TimeString time_interval
Definition startup_config.h:101

ccf::CCFConfig::Snapshots::directory
std::string directory
Definition startup_config.h:98

ccf::CCFConfig::Snapshots::operator==
bool operator==(const Snapshots &) const =default

ccf::CCFConfig::Snapshots::read_only_directory
std::optional< std::string > read_only_directory
Definition startup_config.h:102

ccf::CCFConfig::Snapshots::backup_fetch
BackupFetch backup_fetch
Definition startup_config.h:114

ccf::CCFConfig::Snapshots::min_tx_count
size_t min_tx_count
Definition startup_config.h:100

ccf::CCFConfig::Snapshots::tx_count
size_t tx_count
Definition startup_config.h:99

ccf::CCFConfig
Definition startup_config.h:24

ccf::CCFConfig::node_to_node_message_limit
size_t node_to_node_message_limit
Definition startup_config.h:28

ccf::CCFConfig::network
ccf::NodeInfoNetwork network
Definition startup_config.h:33

ccf::CCFConfig::historical_cache_soft_limit
ccf::ds::SizeString historical_cache_soft_limit
Definition startup_config.h:30

ccf::CCFConfig::ledger_signatures
LedgerSignatures ledger_signatures
Definition startup_config.h:63

ccf::CCFConfig::jwt
JWT jwt
Definition startup_config.h:71

ccf::CCFConfig::ledger
Ledger ledger
Definition startup_config.h:54

ccf::CCFConfig::worker_threads
size_t worker_threads
Definition startup_config.h:25

ccf::CCFConfig::files_cleanup
FilesCleanup files_cleanup
Definition startup_config.h:128

ccf::CCFConfig::attestation
Attestation attestation
Definition startup_config.h:94

ccf::CCFConfig::node_certificate
NodeCertificateInfo node_certificate
Definition startup_config.h:44

ccf::COSESignaturesConfig
Definition cose_signatures_config.h:12

ccf::NodeInfoNetwork_v2::NetAddress
std::string NetAddress
Definition node_info_network.h:81

ccf::NodeInfoNetwork
Definition node_info_network.h:179

ccf::RecoveryDecisionProtocolConfig
Definition startup_config.h:132

ccf::RecoveryDecisionProtocolConfig::message_retry_timeout
ccf::ds::TimeString message_retry_timeout
Definition startup_config.h:134

ccf::RecoveryDecisionProtocolConfig::operator==
bool operator==(const RecoveryDecisionProtocolConfig &) const =default

ccf::RecoveryDecisionProtocolConfig::failover_timeout
ccf::ds::TimeString failover_timeout
Definition startup_config.h:135

ccf::RecoveryDecisionProtocolConfig::expected_locations
std::vector< sealing_recovery::Location > expected_locations
Definition startup_config.h:133

ccf::SealingRecoveryConfig
Definition startup_config.h:140

ccf::SealingRecoveryConfig::recovery_decision_protocol
std::optional< RecoveryDecisionProtocolConfig > recovery_decision_protocol
Definition startup_config.h:142

ccf::SealingRecoveryConfig::operator==
bool operator==(const SealingRecoveryConfig &) const =default

ccf::SealingRecoveryConfig::location
sealing_recovery::Location location
Definition startup_config.h:141

ccf::ServiceConfiguration
Definition service_config.h:14

ccf::StartupConfig::Join
Definition startup_config.h:177

ccf::StartupConfig::Join::service_cert
std::vector< uint8_t > service_cert
Definition startup_config.h:180

ccf::StartupConfig::Join::follow_redirect
bool follow_redirect
Definition startup_config.h:181

ccf::StartupConfig::Join::target_rpc_address
ccf::NodeInfoNetwork::NetAddress target_rpc_address
Definition startup_config.h:178

ccf::StartupConfig::Join::fetch_recent_snapshot
bool fetch_recent_snapshot
Definition startup_config.h:182

ccf::StartupConfig::Join::host_data_transparent_statement_path
std::optional< std::string > host_data_transparent_statement_path
Definition startup_config.h:186

ccf::StartupConfig::Join::fetch_snapshot_retry_interval
ccf::ds::TimeString fetch_snapshot_retry_interval
Definition startup_config.h:184

ccf::StartupConfig::Join::retry_timeout
ccf::ds::TimeString retry_timeout
Definition startup_config.h:179

ccf::StartupConfig::Join::fetch_snapshot_max_size
ccf::ds::SizeString fetch_snapshot_max_size
Definition startup_config.h:185

ccf::StartupConfig::Join::fetch_snapshot_max_attempts
size_t fetch_snapshot_max_attempts
Definition startup_config.h:183

ccf::StartupConfig::Recover
Definition startup_config.h:192

ccf::StartupConfig::Recover::previous_service_identity
std::optional< std::vector< uint8_t > > previous_service_identity
Definition startup_config.h:193

ccf::StartupConfig::Start
Definition startup_config.h:167

ccf::StartupConfig::Start::constitution
std::string constitution
Definition startup_config.h:169

ccf::StartupConfig::Start::members
std::vector< ccf::NewMember > members
Definition startup_config.h:168

ccf::StartupConfig::Start::service_configuration
ccf::ServiceConfiguration service_configuration
Definition startup_config.h:170

ccf::StartupConfig::Start::operator==
bool operator==(const Start &other) const =default

ccf::StartupConfig
Definition startup_config.h:148

ccf::StartupConfig::initial_service_certificate_validity_days
size_t initial_service_certificate_validity_days
Definition startup_config.h:156

ccf::StartupConfig::snapshot_tx_interval
size_t snapshot_tx_interval
Definition startup_config.h:153

ccf::StartupConfig::cose_signatures
ccf::COSESignaturesConfig cose_signatures
Definition startup_config.h:158

ccf::StartupConfig::StartupConfig
StartupConfig()=default

ccf::StartupConfig::service_data
nlohmann::json service_data
Definition startup_config.h:162

ccf::StartupConfig::StartupConfig
StartupConfig(const CCFConfig &common_base)
Definition startup_config.h:150

ccf::StartupConfig::start
Start start
Definition startup_config.h:174

ccf::StartupConfig::join
Join join
Definition startup_config.h:189

ccf::StartupConfig::node_data
nlohmann::json node_data
Definition startup_config.h:164

ccf::StartupConfig::recover
Recover recover
Definition startup_config.h:196

ccf::StartupConfig::startup_host_time
std::string startup_host_time
Definition startup_config.h:152

ccf::StartupConfig::service_subject_name
std::string service_subject_name
Definition startup_config.h:157

ccf::StartupConfig::sealing_recovery
std::optional< SealingRecoveryConfig > sealing_recovery
Definition startup_config.h:160

ccf::consensus::Configuration
Definition consensus_config.h:11

ccf::ds::SizeString
Definition unit_strings.h:122

ccf::ds::TimeString
Definition unit_strings.h:166

ccf::sealing_recovery::Location
Definition self_healing_open.h:23

unit_strings.h