[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[taler-grid5k] 63/189: make cipher and key size configurable
|
From: |
gnunet |
|
Subject: |
[taler-grid5k] 63/189: make cipher and key size configurable |
|
Date: |
Thu, 28 Apr 2022 10:47:13 +0200 |
This is an automated email from the git hooks/post-receive script.
marco-boss pushed a commit to branch master
in repository grid5k.
commit ad3cf80502422e39f80c28ed9847dafef6d4a460
Author: Boss Marco <bossm8@bfh.ch>
AuthorDate: Fri Mar 11 08:47:20 2022 +0100
make cipher and key size configurable
---
configs/etc/taler/conf.d/exchange-coins.conf | 56 ++++++++++++++--------------
experiment/env | 6 +++
experiment/scripts/helpers.sh | 4 ++
3 files changed, 38 insertions(+), 28 deletions(-)
diff --git a/configs/etc/taler/conf.d/exchange-coins.conf
b/configs/etc/taler/conf.d/exchange-coins.conf
index d37c32c..499b48d 100644
--- a/configs/etc/taler/conf.d/exchange-coins.conf
+++ b/configs/etc/taler/conf.d/exchange-coins.conf
@@ -10,8 +10,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n2-t1633183611]
VALUE = KUDOS:0.02
@@ -22,8 +22,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n3-t1633183611]
VALUE = KUDOS:0.04
@@ -34,8 +34,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n4-t1633183611]
VALUE = KUDOS:0.08
@@ -46,8 +46,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n5-t1633183611]
VALUE = KUDOS:0.16
@@ -58,8 +58,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n6-t1633183611]
VALUE = KUDOS:0.32
@@ -70,8 +70,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n7-t1633183611]
VALUE = KUDOS:0.64
@@ -82,8 +82,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n8-t1633183611]
VALUE = KUDOS:1.28
@@ -94,8 +94,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n9-t1633183611]
VALUE = KUDOS:2.56
@@ -106,8 +106,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n10-t1633183611]
VALUE = KUDOS:5.12
@@ -118,8 +118,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n11-t1633183611]
VALUE = KUDOS:10.24
@@ -130,8 +130,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n12-t1633183611]
VALUE = KUDOS:20.48
@@ -142,8 +142,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n13-t1633183611]
VALUE = KUDOS:40.96
@@ -154,8 +154,8 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
[COIN-KUDOS-n14-t1633183611]
VALUE = KUDOS:81.92
@@ -166,7 +166,7 @@ FEE_WITHDRAW = KUDOS:0
FEE_DEPOSIT = KUDOS:0.01
FEE_REFRESH = KUDOS:0
FEE_REFUND = KUDOS:0
-RSA_KEYSIZE = 2048
-CIPHER = RSA
+RSA_KEYSIZE = <RSA_KEY_SIZE_HERE>
+CHIPHER = <EXCHANGE_CIPHER_HERE>
diff --git a/experiment/env b/experiment/env
index 8490ce9..29fdf82 100644
--- a/experiment/env
+++ b/experiment/env
@@ -61,6 +61,12 @@ EXCHANGE_CMD_PREFIX=""
# before it kills itself
EXCHANGE_MAX_REQUESTS=8192
+# Which cipher the exchange should use
+EXCHANGE_CIPHER=RSA
+
+# When using the RSA cipher, which key size to use
+RSA_KEY_SIZE=2048
+
# Datasource names registered in the grafana instance
PROMETHEUS_DATASOURCE_NAME=Prometheus
LOKI_DATASOURCE_NAME=Loki
diff --git a/experiment/scripts/helpers.sh b/experiment/scripts/helpers.sh
index 6fe470a..7d850dc 100755
--- a/experiment/scripts/helpers.sh
+++ b/experiment/scripts/helpers.sh
@@ -128,6 +128,10 @@ function setup_exchange_config_without_master_key() {
sed -i
"s\<DB_URL_HERE>\postgresql://${DB_USER}:${DB_PASSWORD}@${DATABASE_DOMAIN}:${DB_PORT}/${DB_NAME}\g"
\
/etc/taler/secrets/exchange-db.secret.conf
+ sed -i -e "s/<EXCHANGE_CIPHER_HERE>/${EXCHANGE_CIPHER}/g" \
+ -e "s/<RSA_KEY_SIZE_HERE>/${RSA_KEY_SIZE}/g" \
+ /etc/taler/conf.d/exchange-coins.conf
+
sed -i "s/<BANK_HOST_HERE>/${BANK_DOMAIN}/g" \
/etc/taler/secrets/exchange-accountcredentials.secret.conf
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
- [taler-grid5k] 08/189: add missing user, (continued)
- [taler-grid5k] 08/189: add missing user, gnunet, 2022/04/28
- [taler-grid5k] 10/189: fix, gnunet, 2022/04/28
- [taler-grid5k] 78/189: fix, gnunet, 2022/04/28
- [taler-grid5k] 72/189: cleaner regex, gnunet, 2022/04/28
- [taler-grid5k] 86/189: -fixes -build libmicrohttpd from source, gnunet, 2022/04/28
- [taler-grid5k] 101/189: fix, gnunet, 2022/04/28
- [taler-grid5k] 112/189: add missing parameter hint to explain.py, gnunet, 2022/04/28
- [taler-grid5k] 67/189: set lookahead sign to two days as we get much better client performance, gnunet, 2022/04/28
- [taler-grid5k] 103/189: add upstream response time, gnunet, 2022/04/28
- [taler-grid5k] 76/189: add status label for hopefully better speed, gnunet, 2022/04/28
- [taler-grid5k] 63/189: make cipher and key size configurable,
gnunet <=
- [taler-grid5k] 89/189: fix, gnunet, 2022/04/28
- [taler-grid5k] 110/189: install linux-perf, gnunet, 2022/04/28
- [taler-grid5k] 82/189: include secondary exchanges in prometheus, gnunet, 2022/04/28
- [taler-grid5k] 115/189: fix sharding setup, finish explain script summary, gnunet, 2022/04/28
- [taler-grid5k] 107/189: fix most time consuming, gnunet, 2022/04/28
- [taler-grid5k] 73/189: better endpoint pipeline definition, gnunet, 2022/04/28
- [taler-grid5k] 68/189: add possibility to run multiple exchange-httpd hosts - services must be run as root, since the nfs does allow to change permissions, gnunet, 2022/04/28
- [taler-grid5k] 94/189: merchant behind nginx, gnunet, 2022/04/28
- [taler-grid5k] 85/189: fixes, gnunet, 2022/04/28
- [taler-grid5k] 146/189: update recovery, gnunet, 2022/04/28