mirror/prysm-pulse
1
0
Fork 0
mirror of https://gitlab.com/pulsechaincom/prysm-pulse.git synced 2024-12-26 13:18:57 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
ec41d37cf4
prysm-pulse/tools/cluster-pk-manager
History
Raul Jordan 205594c5d6 Fix Travis Failures on Master (#1938) 
* resolve travis conflicts

* cp proto

* revert

* remove unused context
2019-03-07 23:54:41 -05:00
..
client Faucet enhancements + cluster private key management system (#1679) 2019-03-07 11:14:57 -05:00
server Fix Travis Failures on Master (#1938) 2019-03-07 23:54:41 -05:00
README.md Faucet enhancements + cluster private key management system (#1679) 2019-03-07 11:14:57 -05:00

README.md

Cluster private key management tool

This is a primative tool for managing and delegating validator private key assigments within the kubernetes cluster.

Design

When a validator pod is initializing within the cluster, it requests a private key for a deposited validator. Since pods are epheremal, scale up/down quickly, there needs to be some service to manage private key allocations, validator deposits, and re-allocations of previously in-use private keys from terminated pods.

Workflow for bootstraping a validator pod

  1. Request a private key from the pk manager.
  2. If an unallocated private key exists (from previously terminated pod), assign to the requesting pod.
  3. If all available private keys are in use, generate a new private key, and make the deposit on behalf of this newly generated private key.
  4. Write the assignment to some persistent datastore and fulfill the request.
  5. The validator uses this private key to act as a deposited validator in the system.

Server

The server manages the private key database, allocates new private keys, makes validator deposits, and fulfills requests from pods for private key allocation.

Client

The client makes the private key request with a given pod name and generates a keystore with the server response.