Skip to content

Comments

feat: add TDX TEE framework support#542

Merged
abbesBenayache merged 6 commits intomasterfrom
feat/tdx-support
Feb 17, 2026
Merged

feat: add TDX TEE framework support#542
abbesBenayache merged 6 commits intomasterfrom
feat/tdx-support

Conversation

@abbesBenayache
Copy link
Contributor

@abbesBenayache abbesBenayache commented Feb 10, 2026


Note

Medium Risk
Touches order preflight validation and app TEE framework inference, which can affect whether orders are accepted/rejected and which SMS endpoint is used for secrets.

Overview
Adds TDX as a first-class TeeFramework across the SDK and CLI: updates tag encoding/decoding and validation to recognize tdx, and adjusts preflight checks so apps without mrenclave are treated as TDX and can match tee,tdx tags.

Extends chain configuration to include a TDX SMS endpoint (notably on arbitrum-sepolia-testnet), updates iexec app init --tee-framework tdx to scaffold a non-mrenclave app template, and refreshes the default non-TEE app template image/checksum.

Expands unit/e2e/CLI test coverage and local test docker-compose to run an additional sms-tdx instance, and updates docs/types to include tdx (plus minor type doc fixes around Uint8Array/Buffer generics).

Written by Cursor Bugbot for commit 57bf118. This will update automatically on new commits. Configure here.

@abbesBenayache abbesBenayache self-assigned this Feb 10, 2026
@abbesBenayache abbesBenayache marked this pull request as draft February 10, 2026 17:54
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cursor Bugbot has reviewed your changes and found 2 potential issues.

Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.

This PR is being reviewed by Cursor Bugbot

Details

Your team is on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle for each member of your team.

To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.

@github-actions
Copy link

github-actions bot commented Feb 10, 2026

🐳 Hadolint Dockerfile Lint Results

Click to expand detailed results
Dockerfile:17 DL3016 warning: Pin versions in npm. Instead of `npm install <package>` use `npm install <package>@<version>`

@abbesBenayache abbesBenayache marked this pull request as ready for review February 16, 2026 11:03
@iExecBlockchainComputing iExecBlockchainComputing deleted a comment from cursor bot Feb 16, 2026
@iExecBlockchainComputing iExecBlockchainComputing deleted a comment from cursor bot Feb 16, 2026
…ype validation

- Fix version/fingerprint to use string().required() directly in objMrenclaveSchema
- Make mrenclave optional in appSchema for TDX compatibility (SCONE deprecation planned)
Copy link
Member

@PierreJeanjacquot PierreJeanjacquot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see comments for minor adjustments

- remove dead TDX fallback in teeFramework default
- use generic app template for TDX
- restore mrenclave validation behavior
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cursor Bugbot has reviewed your changes and found 2 potential issues.

Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.

@PierreJeanjacquot PierreJeanjacquot changed the title feat(tee): add TDX TEE framework support feat: add TDX TEE framework support Feb 17, 2026
@abbesBenayache abbesBenayache merged commit 0bb7986 into master Feb 17, 2026
13 checks passed
@abbesBenayache abbesBenayache deleted the feat/tdx-support branch February 17, 2026 10:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants