add covenants example with dockerfile for nitro enclave by stutxo · Pull Request #4 · joshdoman/confidential-script-lib

stutxo · 2025-08-26T02:49:23Z

This adds an examples folder with a covenants_example using a custom CovenantVerifier which has OP_CAT, OP_CSFS and OP_CTV enabled

I have also added an example dockerfile that can be used to build targeted at aarch64-unknown-linux-musl to create a static binary that is needed for nitro enclaves

joshdoman · 2025-08-29T18:10:29Z

Thanks for this PR! It's awesome we now have a working kernel that implements covenant opcodes. I need to run this on my own machine and may make a few changes to the examples folder (like putting this in its own sub-directory), but it looks good at first glance.

While I prefer building things with Nix (see enclaver and confidential-script-tee) because we want reproducible PCR0's, I think it would be good to have an example built with Docker as well.

joshdoman · 2025-08-29T18:55:12Z

+
+ENV Boost_DIR=/usr/lib/aarch64-linux-gnu/cmake/Boost-1.83.0
+
+RUN cargo zigbuild --release --target aarch64-unknown-linux-musl -p examples --bin covenants_example


Nice example using Zig.

joshdoman · 2025-08-29T18:56:49Z

+serde = { version = "1.0", features = ["derive"] }
+vsock = "0.5.1"
+serde_json = "1.0"
+bitcoinkernel-covenants = { git = "https://github.com/stutxo/rust-bitcoinkernel-covenants", branch = "covenants_enabled"}


Any reason you're pointing to your GitHub instead of the Rust crate? It might not be a bad idea actually, just to make clear that this isn't some official "covenants" crate, but I'm curious if you had different thinking, or if this was inadvertent.

ah yeah i had to make a change to get it working, il change it back to use the crate

joshdoman · 2025-08-29T18:59:26Z

+vsock = "0.5.1"
+serde_json = "1.0"
+bitcoinkernel-covenants = { git = "https://github.com/stutxo/rust-bitcoinkernel-covenants", branch = "covenants_enabled"}
+confidential-script-lib = { path = "../" }


My instinct is that examples should point to the latest version of the published library. That way users can just copy the example and run it.

updated Cargo.toml to use the latest verson of the bitcoinkernel-covenats crate with this commit 6cacaa6

stutxo force-pushed the add_covenants_example branch 3 times, most recently from bcace16 to 4b8d7f7 Compare August 26, 2025 04:35

joshdoman reviewed Aug 29, 2025

View reviewed changes

add covenants example with dockerfile for nitro enclave

6cacaa6

stutxo force-pushed the add_covenants_example branch from 4b8d7f7 to 6cacaa6 Compare August 30, 2025 17:39

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

add covenants example with dockerfile for nitro enclave#4

add covenants example with dockerfile for nitro enclave#4
stutxo wants to merge 1 commit into
joshdoman:mainfrom
stutxo:add_covenants_example

stutxo commented Aug 26, 2025

Uh oh!

joshdoman commented Aug 29, 2025

Uh oh!

joshdoman Aug 29, 2025

Uh oh!

joshdoman Aug 29, 2025

Uh oh!

stutxo Aug 29, 2025

Uh oh!

joshdoman Aug 29, 2025

Uh oh!

stutxo Aug 30, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants


		ENV Boost_DIR=/usr/lib/aarch64-linux-gnu/cmake/Boost-1.83.0

		RUN cargo zigbuild --release --target aarch64-unknown-linux-musl -p examples --bin covenants_example

Conversation

stutxo commented Aug 26, 2025

Uh oh!

joshdoman commented Aug 29, 2025

Uh oh!

joshdoman Aug 29, 2025

Choose a reason for hiding this comment

Uh oh!

joshdoman Aug 29, 2025

Choose a reason for hiding this comment

Uh oh!

stutxo Aug 29, 2025

Choose a reason for hiding this comment

Uh oh!

joshdoman Aug 29, 2025

Choose a reason for hiding this comment

Uh oh!

stutxo Aug 30, 2025

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants