Skip to content

Allow capability DONs to include OCR attestation of the responses#1907

Merged
jmank88 merged 8 commits intomainfrom
feature/PLEX-2611-pass-ocr-attestation-to-workflow-don
Apr 1, 2026
Merged

Allow capability DONs to include OCR attestation of the responses#1907
jmank88 merged 8 commits intomainfrom
feature/PLEX-2611-pass-ocr-attestation-to-workflow-don

Conversation

@dhaidashenko
Copy link
Copy Markdown
Contributor

@dhaidashenko dhaidashenko commented Mar 19, 2026
edited
Loading

@github-actions
Copy link
Copy Markdown

github-actions bot commented Mar 19, 2026
edited
Loading

⚠️ API Diff Results - github.com/smartcontractkit/chainlink-common

⚠️ Breaking Changes (2)

pkg/capabilities (2)
  • Execute — Type changed:
func(
  context.Context, 
  CapabilityRequest, 
  I, 
  C, 
  func(context.Context, 
  RequestMetadata, 
  I, 
  C) (O, 
  ResponseMetadata, 
  + *OCRAttestation, 
  error)
)
(CapabilityResponse, error)
  • SetResponse — Type changed:
func(
  *CapabilityResponse, 
  bool, 
  google.golang.org/protobuf/proto.Message, 
  + *OCRAttestation
)
error

✅ Compatible Changes (12)

pkg/capabilities (5)

  • AttributedSignature — ➕ Added

  • ErrResponsePayloadNotAvailable — ➕ Added

  • ExtractMeteringFromMetadata — ➕ Added

  • OCRAttestation — ➕ Added

  • ResponseToReportData — ➕ Added

pkg/capabilities.CapabilityResponse (1)
  • OCRAttestation — ➕ Added
pkg/capabilities.ResponseAndMetadata (1)
  • OCRAttestation — ➕ Added
pkg/capabilities/pb (2)

  • AttributedSignature — ➕ Added

  • OCRAttestation — ➕ Added

pkg/capabilities/pb.(*CapabilityResponse) (1)
  • GetOcrAttestation — ➕ Added
pkg/capabilities/pb.CapabilityResponse (1)
  • OcrAttestation — ➕ Added
pkg/settings/cresettings.Workflows (1)
  • FeatureChainCapabilityHashBasedOCRActivePeriod — ➕ Added

📄 View full apidiff report

@github-actions
Copy link
Copy Markdown

github-actions bot commented Mar 19, 2026
edited
Loading

✅ API Diff Results - github.com/smartcontractkit/chainlink-common/keystore

✅ Compatible Changes (1)

corekeys/ocr2key (1)
  • EvmVerifyBlob — ➕ Added

📄 View full apidiff report

@dhaidashenko dhaidashenko mentioned this pull request Mar 19, 2026
Open
@dhaidashenko dhaidashenko marked this pull request as ready for review March 19, 2026 16:14
@dhaidashenko dhaidashenko requested review from a team as code owners March 19, 2026 16:14
Copilot AI review requested due to automatic review settings March 19, 2026 16:14
@dhaidashenko dhaidashenko requested review from bolekk and removed request for ilija42 March 19, 2026 16:14
Copilot AI reviewed Mar 19, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR extends the capabilities response metadata to optionally carry an OCR attestation (config digest, sequence number, and attributed signatures), enabling Capability DONs to include OCR-style attestations alongside responses.

Changes:

  • Added ocr_attestation (with ResponseOCRAttestation + AttributedSignature) to ResponseMetadata in the capabilities protobuf schema.
  • Updated Go capability types and pb helper conversions to serialize/deserialize OCR attestation data.
  • Added test coverage for attestation round-tripping and invalid config digest length handling; refactored EVM keyring blob verification into a reusable function.

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
pkg/capabilities/pb/capabilities_helpers_test.go Adds subtests for invalid digest length and round-trip conversion including OCR attestation metadata.
pkg/capabilities/pb/capabilities_helpers.go Adds OCR attestation marshaling/unmarshaling logic to capability response proto helpers.
pkg/capabilities/pb/capabilities.proto Introduces ocr_attestation on ResponseMetadata and new messages for attestation + signatures.
pkg/capabilities/pb/capabilities.pb.go Regenerated protobuf Go output for the updated schema.
pkg/capabilities/capabilities.go Adds OCR attestation types to response metadata and introduces ResponseToReportData hashing helper.
keystore/corekeys/ocr2key/evm_keyring.go Extracts EVM blob verification into EvmVerifyBlob and reuses it from the keyring method.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@dhaidashenko dhaidashenko force-pushed the feature/PLEX-2611-pass-ocr-attestation-to-workflow-don branch from 1de3504 to 82a189c Compare March 19, 2026 17:00
@dhaidashenko dhaidashenko requested a review from Copilot March 19, 2026 17:09
Copilot AI reviewed Mar 19, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds OCR attestation metadata support to capability responses so Capability DONs can include verifiable OCR context (config digest, sequence number, signatures) alongside the response.

Changes:

  • Extend ResponseMetadata protobuf schema with an optional ocr_attestation message (including attributed signatures).
  • Update Go conversion helpers to marshal/unmarshal OCR attestation between internal types and protobuf types, plus add round-trip/validation tests.
  • Introduce response-to-report hashing helper and extract EVM blob verification into a reusable function.

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
pkg/capabilities/pb/capabilities.proto Adds ResponseOCRAttestation + AttributedSignature and wires it into ResponseMetadata.
pkg/capabilities/pb/capabilities.pb.go Regenerated protobuf Go types to include the new messages/field.
pkg/capabilities/pb/capabilities_helpers.go Adds proto ↔ internal mapping for OCR attestation on capability responses.
pkg/capabilities/pb/capabilities_helpers_test.go Adds validation + round-trip coverage for response OCR attestation conversions.
pkg/capabilities/capabilities.go Adds internal OCR attestation types and ResponseToReportData hashing helper.
keystore/corekeys/ocr2key/evm_keyring.go Extracts EVM blob verification into EvmVerifyBlob and reuses it from the keyring method.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@dhaidashenko dhaidashenko force-pushed the feature/PLEX-2611-pass-ocr-attestation-to-workflow-don branch from 82a189c to 76aac32 Compare March 19, 2026 17:42
@dhaidashenko dhaidashenko force-pushed the feature/PLEX-2611-pass-ocr-attestation-to-workflow-don branch from 76aac32 to bbf9252 Compare March 25, 2026 17:31
@dhaidashenko dhaidashenko requested a review from Copilot March 27, 2026 17:15
Copilot AI reviewed Mar 27, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds support for attaching OCR attestation data to CapabilityResponse so capability DON responses can be verified/attributed, and introduces hashing utilities/tests to produce deterministic report data for attestation workflows.

Changes:

  • Extend CapabilityResponse protobuf with an optional ocr_attestation (config digest, sequence number, signatures).
  • Add Go helpers to marshal/unmarshal the new attestation field between proto and capabilities.CapabilityResponse.
  • Introduce ResponseToReportData hashing + tests (including a golden digest) to produce deterministic 32-byte report data.

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 2 comments.

Show a summary per file
File Description
pkg/capabilities/pb/capabilities.proto Adds OCRAttestation + AttributedSignature messages and an optional ocr_attestation field on CapabilityResponse.
pkg/capabilities/pb/capabilities.pb.go Regenerated Go protobuf output reflecting the new optional field and new messages.
pkg/capabilities/pb/capabilities_helpers.go Implements proto ↔ domain conversions for OCR attestation on capability responses.
pkg/capabilities/pb/capabilities_helpers_test.go Adds round-trip and validation tests for OCR attestation conversion.
pkg/capabilities/capabilities.go Adds domain types for OCR attestation, ErrResponsePayloadNotAvailable, and ResponseToReportData hashing.
pkg/capabilities/capabilities_test.go Adds tests validating deterministic hashing behavior and metadata constraints.
keystore/corekeys/ocr2key/evm_keyring.go Refactors EVM blob verification into a shared helper function.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@dhaidashenko dhaidashenko requested a review from bolekk March 30, 2026 11:48
@dhaidashenko dhaidashenko requested review from a team as code owners March 30, 2026 16:15
bolekk
bolekk approved these changes Mar 31, 2026
View reviewed changes
pkg/capabilities/capabilities.go
return rpt, nil
}

func ResponseToReportData(workflowExecutionID, referenceID string, responsePayload []byte, metadata ResponseMetadata) ([32]byte, error) {
Copy link
Copy Markdown
Contributor

@bolekk bolekk Mar 31, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How is this supposed to work is different nodes can attach different metering data? How are you going to get multiple signatures on a report that contains metering data in the signed payload?

Copy link
Copy Markdown
Contributor Author

@dhaidashenko dhaidashenko Mar 31, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why will different nodes attach different metering data? Right now spend unit and spend value are hardcoded for each read action. So the metering is identical across all nodes.
We need to include the metering into report to be able to trust a single response on the workflow DON to handle case of a malicious node.
Do we expect different nodes to provide different spend values in other capabilities?

Copy link
Copy Markdown
Contributor

@bolekk bolekk Mar 31, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, I think the original plan was to allow each node to independently determine the cost and let workflow DON medianize it. If you say it's always identical for ReadChain then it simplifies things. cc @patrickhuie19

@dhaidashenko dhaidashenko requested a review from ilija42 March 31, 2026 17:08
@ilija42 ilija42 enabled auto-merge April 1, 2026 11:18
@ilija42 ilija42 added this pull request to the merge queue Apr 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bolekk bolekk bolekk approved these changes

Copilot code review Copilot Copilot left review comments

@cedric-cordenier cedric-cordenier cedric-cordenier approved these changes

@amit-momin amit-momin amit-momin approved these changes

@harry-anderson harry-anderson Awaiting requested review from harry-anderson

@Krish-vemula Krish-vemula Awaiting requested review from Krish-vemula

@ilija42 ilija42 Awaiting requested review from ilija42

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@dhaidashenko @bolekk @cedric-cordenier @amit-momin @jmank88