Skip to content

Latest commit

 

History

History

teeracle

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
kubernetes
kubernetes
 
 
README.md
README.md
 
 
install-teeracle.sh
install-teeracle.sh
 
 

README.md

Teeracle install into Securitee's kubernetes cluster

This example is about to install Integritee's Teeracle.

Prerequisites:

  • Ensure you have access to a Kubernetes cluster with SGX-enabled nodes and kubectl installed and configured. The easiest way to get started is to order Kubernetes from Securitee Securitee Kubernetes, which offers SGX-enabled nodes.
  • You have Helm installed

Kubernetes deployment walkthrough

We are now installing Teeracle

Install steps

  • Edit the configuration values in file kubernetes/values.yaml

    app:
  url: "wss://rococo.api.integritee.network"
  interval: "2m"

  • Install the Teeracle into the cluster

    helm install -f ./kubernetes/values.yaml teeracle ./kubernetes --create-namespace -n teeracle
or run
./install-teeracle.sh

Misc.

SGX Plugin

If you are running in simulation mode, or are using a different plugin please edit the kubernetes/templates/teeracle.yaml

  limits:
    sgx.intel.com/epc: "10Mi"
    sgx.intel.com/enclave: 1
    sgx.intel.com/provision: 1

PCCS server

The DCAP attestation requires a running PCCS server - which is provided by Securitee by default that's why we need to mount the /etc/sgx_default_qcnl.conf config file see kubernetes/templates/teeracle.yaml

        volumeMounts:
        - name: qcnl
        mountPath: /etc/sgx_default_qcnl.conf
        ...
    volumes:
    - name: qcnl
      hostPath:
        path: /etc/sgx_default_qcnl.conf