Skip to content

PRIV-592: Add Confidential Compute limits (TLS, cache, session)#2220

Merged
prashantkumar1982 merged 2 commits into
mainfrom
priv-504-cw-limits-1a
Jul 3, 2026
Merged

PRIV-592: Add Confidential Compute limits (TLS, cache, session)#2220
prashantkumar1982 merged 2 commits into
mainfrom
priv-504-cw-limits-1a

Conversation

@prashantkumar1982

@prashantkumar1982 prashantkumar1982 commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

Summary

  • Extends ConfidentialCompute cresettings with the remaining capability-side executor settings from PRIV-592: TLS verification skip, enclave refresh interval, public-key cache tuning, and sticky-session config.
  • Defaults mirror the previous hardcoded / job-spec values in confidential-compute (enclave-client.DefaultCacheConfig, DefaultSessionConfig, etc.) so behavior is unchanged until explicitly overridden via limits.
  • Builds on the Confidential Compute limits already merged to main (rates, retries, secrets cache, request timeouts).

New settings keys:

Key Default
ConfidentialCompute.InsecureSkipTLSVerify false
ConfidentialCompute.EnclaveRefreshInterval 10s
ConfidentialCompute.PublicKeyCache.* matches DefaultCacheConfig
ConfidentialCompute.Session.* matches DefaultSessionConfig

Companion PR in confidential-compute will consume these settings in the executor while keeping deprecated job-spec fields as transitional overrides.

prashantkumar1982 and others added 2 commits June 30, 2026 00:12
Resolve cresettings conflicts: keep main's EnclaveRequestTimeout and
PublicKeyRequestTimeout plus the 1A ConfidentialCompute limits (TLS,
refresh interval, public-key cache, session).

Co-authored-by: Cursor <cursoragent@cursor.com>
@prashantkumar1982 prashantkumar1982 requested a review from a team as a code owner July 3, 2026 02:35
@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

👋 prashantkumar1982, thanks for creating this pull request!

To help reviewers, please consider creating future PRs as drafts first. This allows you to self-review and make any final changes before notifying the team.

Once you're ready, you can mark it as "Ready for review" to request feedback. Thanks!

@prashantkumar1982 prashantkumar1982 changed the title PRIV-504: Add Confidential Compute 1A limits (TLS, cache, session) PRIV-504: Add Confidential Compute limits (TLS, cache, session) Jul 3, 2026
@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

✅ API Diff Results - github.com/smartcontractkit/chainlink-common

✅ Compatible Changes (4)

pkg/settings/cresettings.confidentialCompute (4)
  • EnclaveRefreshInterval — ➕ Added

  • InsecureSkipTLSVerify — ➕ Added

  • PublicKeyCache — ➕ Added

  • Session — ➕ Added


📄 View full apidiff report

@prashantkumar1982 prashantkumar1982 changed the title PRIV-504: Add Confidential Compute limits (TLS, cache, session) PRIV-592: Add Confidential Compute limits (TLS, cache, session) Jul 3, 2026
@prashantkumar1982 prashantkumar1982 added this pull request to the merge queue Jul 3, 2026
Merged via the queue into main with commit ea25668 Jul 3, 2026
33 checks passed
@prashantkumar1982 prashantkumar1982 deleted the priv-504-cw-limits-1a branch July 3, 2026 17:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants