Brian Picciano
7dceb659ef
Store full nebula cert for each host in garage, rather than just the IP
...
This allows each host to verify the cert against the CA cert. We also
now have each host sign the yaml file that it posts to garage, to ensure
that a host can't arbitrarily overwrite another host's file.
2022-10-29 21:11:40 +02:00
Brian Picciano
711d568036
Use a real private key for garage instances
2022-10-29 00:09:18 +02:00
Brian Picciano
b26f4bdd6a
Move proc locking into entrypoint
...
This completely cleans up all logic that used to be in crypticnet.
2022-10-27 00:45:40 +02:00
Brian Picciano
28159608c8
Factor out crypticnet.Env completely
2022-10-27 00:37:03 +02:00
Brian Picciano
b23a4cafa6
Remove Bootstrap from Env
2022-10-27 00:25:58 +02:00
Brian Picciano
08f47bd514
Move daemon.yml types and functionality out of entrypoint and Env
2022-10-26 23:21:31 +02:00
Brian Picciano
03618ba72c
Reimplement dnsmasq-entrypoint in go
...
This allowed for deleting all script utilities and environment variable
logic.
2022-10-26 22:18:16 +02:00
Brian Picciano
2200d85992
Make populating garage ports optional
2022-10-26 21:47:39 +02:00
Brian Picciano
6ef21ff186
Don't set bootstrap host entry during admin create-network
2022-10-26 21:30:30 +02:00
Brian Picciano
be2250fddd
Small fixes to get admin create-network working
2022-10-25 21:15:09 +02:00
Brian Picciano
5e399209b2
Rename go-workspace to just entrypoint, clean out unused wait-for tools
2022-10-20 22:06:22 +02:00
