Dominic Ayre
Dominic Ayre
Basic CI running as of https://github.com/microsoft/CCF/pull/4171 Additional tests for functionality should probably wait for/be done as part of changes to the attestation verification in https://github.com/microsoft/CCF/issues/4188 and https://github.com/microsoft/CCF/issues/4193
Yeah, sorry for missing your message but it is on the daily We need the following tests for security policy: - Node being created with a raw/digested policy which don't...
It's also worth noting we should probably update the sample constitutions to allow operators to manage the tables used in SNP attestation
@achamayou I've renamed trusted authorities to operator provisioner https://github.com/microsoft/CCF/pull/4343/commits/1dbd4d2f5329149f890c6e328c2fe735a0434857
@jumaffre Done as part of https://github.com/microsoft/CCF/pull/4343/commits/de0eacec1e8bdcc619ff626c653dc2db0ea986ad
We should implement https://github.com/microsoft/CCF/pull/4106#pullrequestreview-1078475704
From the meeting with Pallab: We are happy to have a new type of member (trusted authority) who can provision new governors by signing the proposal. How to we maintain...
We might need to swap out the client::RpcTlsClient with the enclave HTTP client so that it works with Monza
We also want to be robust to failures fetching the endorsements (specifically too many requests)
Seconding both the issue itself but also @raoni-br 's point that if we're hitting the upstream registries limit surely this cache isn't actually caching? The docs that the error points...