From fd36e205a52d035319f8384e7048e08ae88cb347 Mon Sep 17 00:00:00 2001 From: Linus Nordberg Date: Fri, 29 May 2015 13:18:21 +0200 Subject: urd log config, first cut --- .../overlay/usr/local/etc/catlfish/frontend-1.cfg | 20 ++++++++++++++++ .../overlay/usr/local/etc/catlfish/frontend-2.cfg | 20 ++++++++++++++++ global/overlay/usr/local/etc/catlfish/merge-1.cfg | 10 ++++++++ global/overlay/usr/local/etc/catlfish/sign-1.cfg | 15 ++++++++++++ global/overlay/usr/local/etc/catlfish/sign-2.cfg | 15 ++++++++++++ .../usr/local/etc/catlfish/urd.appendto.org.cfg | 27 ++++++++++++++++++++++ 6 files changed, 107 insertions(+) create mode 100644 global/overlay/usr/local/etc/catlfish/frontend-1.cfg create mode 100644 global/overlay/usr/local/etc/catlfish/frontend-2.cfg create mode 100644 global/overlay/usr/local/etc/catlfish/merge-1.cfg create mode 100644 global/overlay/usr/local/etc/catlfish/sign-1.cfg create mode 100644 global/overlay/usr/local/etc/catlfish/sign-2.cfg create mode 100644 global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg (limited to 'global/overlay/usr') diff --git a/global/overlay/usr/local/etc/catlfish/frontend-1.cfg b/global/overlay/usr/local/etc/catlfish/frontend-1.cfg new file mode 100644 index 0000000..f953368 --- /dev/null +++ b/global/overlay/usr/local/etc/catlfish/frontend-1.cfg @@ -0,0 +1,20 @@ +localnodes: + - frontend-1 + +publicaddresses: + frontend-1: 127.0.0.1:4711 + +publichttpaddresses: + frontend-1: 0.0.0.0:8080 + +paths: + configdir: . + knownroots: /usr/local/etc/catlfish/known_roots + https_cacertfile: /usr/local/etc/catlfish/cacert.pem + logpublickey: /usr/local/etc/catlfish/logpubkey.pem + publickeys: /usr/local/etc/catlfish/publickeys + privatekeys: /usr/local/etc/catlfish/privatekeys + db: /var/local/db/catlfish/ + + https_certfile: /usr/local/etc/catlfish/frontend-1.pem + https_keyfile: /usr/local/etc/catlfish/frontend-1-key.pem diff --git a/global/overlay/usr/local/etc/catlfish/frontend-2.cfg b/global/overlay/usr/local/etc/catlfish/frontend-2.cfg new file mode 100644 index 0000000..be5c245 --- /dev/null +++ b/global/overlay/usr/local/etc/catlfish/frontend-2.cfg @@ -0,0 +1,20 @@ +localnodes: + - frontend-2 + +publicaddresses: + frontend-1: 127.0.0.1:4711 + +publichttpaddresses: + frontend-1: 0.0.0.0:8080 + +paths: + configdir: . + knownroots: /usr/local/etc/catlfish/known_roots + https_cacertfile: /usr/local/etc/catlfish/cacert.pem + logpublickey: /usr/local/etc/catlfish/logpubkey.pem + publickeys: /usr/local/etc/catlfish/publickeys + privatekeys: /usr/local/etc/catlfish/privatekeys + db: /var/local/db/catlfish/ + + https_certfile: /usr/local/etc/catlfish/frontend-2.pem + https_keyfile: /usr/local/etc/catlfish/frontend-2-key.pem diff --git a/global/overlay/usr/local/etc/catlfish/merge-1.cfg b/global/overlay/usr/local/etc/catlfish/merge-1.cfg new file mode 100644 index 0000000..12c08cb --- /dev/null +++ b/global/overlay/usr/local/etc/catlfish/merge-1.cfg @@ -0,0 +1,10 @@ +nodename: merge-1 + +paths: + known_roots: /usr/local/etc/catlfish/known_roots/ + https_cacertfile: /usr/local/etc/catlfish/cacert.pem + logpublickey: /usr/local/etc/catlfish/logkey.pem + publickeys: /usr/local/etc/catlfish/publickeys + privatekeys: /usr/local/etc/catlfish + verifycert_bin: /usr/local/src/catlfish/verifycert.erl + mergedb: /var/local/db/catlfish diff --git a/global/overlay/usr/local/etc/catlfish/sign-1.cfg b/global/overlay/usr/local/etc/catlfish/sign-1.cfg new file mode 100644 index 0000000..25ccd89 --- /dev/null +++ b/global/overlay/usr/local/etc/catlfish/sign-1.cfg @@ -0,0 +1,15 @@ +paths: + configdir: . + https_cacertfile: /usr/local/etc/catlfish/cacert.pem + logpublickey: /usr/local/etc/catlfish/logkey.pem + publickeys: /usr/local/etc/catlfish/publickeys + privatekeys: /usr/local/etc/catlfish/privatekeys + + https_certfile: /usr/local/etc/catlfish/sign-1.pem + https_keyfile: /usr/local/etc/catlfish/sign-1-key.pem + +hsm: + library: /usr/lunasa/lib/libCryptoki2_64.so + slot: 1 + label: CMU Unwrapped ECDSA Private Key + pin: "@/usr/local/etc/catlfish/lunahsm-pin" diff --git a/global/overlay/usr/local/etc/catlfish/sign-2.cfg b/global/overlay/usr/local/etc/catlfish/sign-2.cfg new file mode 100644 index 0000000..b0ea289 --- /dev/null +++ b/global/overlay/usr/local/etc/catlfish/sign-2.cfg @@ -0,0 +1,15 @@ +paths: + configdir: . + https_cacertfile: /usr/local/etc/catlfish/cacert.pem + logpublickey: /usr/local/etc/catlfish/logkey.pem + publickeys: /usr/local/etc/catlfish/publickeys + privatekeys: /usr/local/etc/catlfish/privatekeys + + https_certfile: /usr/local/etc/catlfish/sign-2.pem + https_keyfile: /usr/local/etc/catlfish/sign-2-key.pem + +hsm: + library: /usr/lunasa/lib/libCryptoki2_64.so + slot: 1 + label: CMU Unwrapped ECDSA Private Key + pin: "@/usr/local/etc/catlfish/lunahsm-pin" diff --git a/global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg b/global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg new file mode 100644 index 0000000..b235444 --- /dev/null +++ b/global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg @@ -0,0 +1,27 @@ +baseurl: https://urd.appendto.org/ + +frontendnodes: + - name: frontend-1 + publicaddress: frontend-1.urd.appendto.org:443 + address: frontend-1.urd.appendto.org:8082 + - name: frontend-2 + publicaddress: frontend-2.urd.appendto.org:443 + address: frontend-2.urd.appendto.org:8082 + +storagenodes: + - name: storage-1 + address: frontend-1.urd.appendto.org:8081 + - name: storage-2 + address: frontend-2.urd.appendto.org:8081 + +signingnodes: + - name: signing-1 + address: sign-1.urd.appendto.org:8088 + - name: signing-2 + address: sign-2.urd.appendto.org:8088 + +mergenodes: + - name: merge-1 + - name: merge-2 + +storage-quorum-size: 1 -- cgit v1.1