harald/teepot
1
0
Fork 0
mirror of https://github.com/matter-labs/teepot.git synced 2025-07-21 15:13:56 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
503 commits 23 branches 61 tags 2.2 MiB
Commit graph

10 commits

Author SHA1 Message Date
Harald Hoyer
c92cb4e0b1
fix: increase performance_multiplier 
Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-08-07 16:43:30 +02:00
Harald Hoyer
6be0ac561e
fix: use performance_multiplier 
The vault instances lose the raft leader status, while loading
the `vault-auth-tee` plugin, because the gramine enviroment slows
down the `execve` significantly.

Using `performance_multiplier` relaxes the timeouts for the raft protocol.

see also: https://github.com/hashicorp/vault/issues/28009

Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-08-07 15:54:22 +02:00
Harald Hoyer
97a1654c59
chore: turn off debug again 
The increase of `max_threads` and `stack.size` did the trick.

Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-08-07 12:22:17 +02:00
Harald Hoyer
0de5447580
chore: tweak vault parameters for slow plugin loading 
Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-08-07 10:12:36 +02:00
otani
ace415a43e
fix: dns for vault nodes 2024-07-09 16:39:04 +03:00
Harald Hoyer
ae01290bcc
chore: change dns names for the vault cluster 
Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-07-09 11:11:10 +02:00
Harald Hoyer
f1b8a48a6a
fix: update the common cacert and include it in the unseal container 
The previous cacert expired. A new one was created and also included in the unseal container.

The path to access the cacert was fixed in the unseal app and made configurable via an environment variable.
 2024-07-03 11:26:29 +02:00
Harald Hoyer
d0c5950c0e
feat: use nixsgx nix function to create containers 
It refactors the way the SGX containers are built.
This removes all `Dockerfile` and gramine manifest files.
It also enables a single recipe for azure and non-azure variants.

Additionally the `teepot-crate.nix` is now the inherited recipe to
build the rust `teepot` crate.

Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-06-10 16:32:02 +02:00
Harald Hoyer
9680e32e82
fix: cleanup the nix packages 
`curl` and `openssl` have to be specified with `.out`

Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-03-08 14:19:31 +01:00
Harald Hoyer
91f1612e0f
chore: cleanup and nixify 
* create containers with nix
* updated README.md
* added SPDX license headers

Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
 2024-02-28 11:09:34 +01:00