incubator-teaclave icon indicating copy to clipboard operation
incubator-teaclave copied to clipboard

Published 20 hours ago verified publisher icon apache

DCAP deployment improvement

Open henrysun007 opened this issue 1 year ago • 2 comments

Motivation & problem statement

The deployment for DCAP attestation is not well supported. runtime.config.toml and build.config.toml have to be modified manually. There are three runtime.config.tomls in config, docker and tests/fixtures respectively.

henrysun007 avatar Jun 07 '23 07:06 henrysun007

Besides, there are many issues about the attestation: #667 #634 #548 #469 #459 #452

More documents are needed about the attestation. The attesation also needs improvement.

henrysun007 avatar Jun 14 '23 06:06 henrysun007

Hi @henrysun007, I noticed that the port for attestation is hardcoded as 443 in attestation/src/service.rs:

let addrs = url.socket_addrs(|| match url.scheme() {
    "https" => Some(443), // Fixed port.
    _ => None,
})?;

Is it possible for us to change the binding port? Sometimes 443 on the local machine is already in use for other services so that we cannot deploy DCAP.

hiroki-chen avatar Jul 13 '23 04:07 hiroki-chen