Taisuke Fujita glassonion1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: rbac.authorization.k8s.io/v1beta1 | |
| kind: ClusterRole | |
| metadata: | |
| name: all-reader | |
| rules: | |
| - apiGroups: [""] | |
| resources: | |
| - nodes | |
| - nodes/proxy | |
| - services |
glassonion1
/ prom-deployment2.yaml
Created
May 9, 2020 03:58
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: extensions/v1beta1 | |
| kind: Deployment | |
| metadata: | |
| name: prometheus | |
| namespace: stats | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| app: prometheus |
glassonion1
/ stackdriver-prometheus-sidecar.puml
Last active
June 6, 2020 01:37
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @startuml | |
| skinparam componentStyle uml2 | |
| node "Redis Pod" { | |
| [redis_exporter] | |
| database redis | |
| } | |
| redis <- redis_exporter |
glassonion1
/ gcp_log.plantuml
Last active
December 26, 2020 06:24
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @startuml | |
| object ": AccessLog" as access | |
| access : severity = "ERROR" | |
| access : time = "2020-12-31T20:02:05.123456Z" | |
| access : httpRequest = Object | |
| object ": ApplicationLog" as app1 | |
| app1 : severity = "INFO" | |
| app1 : time = "2020-12-31T20:02:03.000456Z" |
glassonion1
/ azure_sdk_blob_get.rs
Last active
May 10, 2021 03:32
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| use azure_core::prelude::Range; | |
| use azure_core::HttpClient; | |
| use azure_storage::blob::prelude::{AsBlobClient, AsContainerClient}; | |
| use azure_storage::clients::AsStorageClient; | |
| use azure_storage::core::clients::StorageAccountClient; | |
| use reqwest; | |
| use std::error::Error; | |
| use std::sync::Arc; | |
| #[tokio::main] |
glassonion1
/ azure_sdk_blob_put.rs
Created
May 10, 2021 06:14
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #[tokio::main] | |
| async fn main() -> Result<(), Box<dyn Error + Send + Sync>> { | |
| let account = "xxxxx"; | |
| let master_key = "xxxxx"; | |
| let http_client: Arc<Box<dyn HttpClient>> = Arc::new(Box::new(reqwest::Client::new())); | |
| let storage_account_client = | |
| StorageAccountClient::new_access_key(http_client.clone(), account, master_key); | |
| let storage_client = storage_account_client.as_storage_client(); |
glassonion1
/ sgx_remote_attestation.puml
Last active
August 13, 2021 00:44
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| autoactivate on | |
| participant "main.rs : App" as App | |
| participant "lib.rs:Enclave" as Enclave | |
| participant "client.rs:Client" as Client | |
| participant "SGX SDK" as SDK | |
| participant IPS <<Intel Service>> | |
| participant IAS <<Intel Service>> | |
| App -> Enclave: verify<<ECall>> |
glassonion1
/ sgx_remote_attestation_class.puml
Last active
August 13, 2021 00:48
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class App { | |
| main() | |
| ocall_sgx_init_quote()<<OCall>> | |
| ocall_get_quote()<<OCall>> | |
| } | |
| class Enclave { | |
| verify() <<ECall>> | |
| create_attestation_report() | |
| } | |
| class Client { |
glassonion1
/ sgx_architectural_enclaves.puml
Last active
August 13, 2021 00:53
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Rectangle Enclaves { | |
| package "Architectural Enclaves" { | |
| ["PvE"] | |
| ["QE"] | |
| ["LE"] | |
| ["PSE"] | |
| ["PcE"] | |
| } | |
| ["Application Enclave"] | |
| } |
glassonion1
/ sgx_crypto_box.puml
Created
August 25, 2021 10:41
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| participant "main.rs : App" as App | |
| participant "lib.rs:Enclave" as Enclave | |
| participant "secret_key:OnceCell" as OnceCell | |
| App -> Enclave: ecall_get_encryption_key<<ECall>> | |
| Enclave -> Enclave: "generates key pair" | |
| Enclave -> OnceCell: set | |
| return | |
| Enclave --> App: public_key |