forked from wrenn/wrenn
pptx704
fb16bc9ed1
- Update hostagent proto: firecracker_version → vmm_version in metadata - Regenerate hostagent.pb.go - Update .env.example: WRENN_FIRECRACKER_BIN → WRENN_CH_BIN - Update Makefile: remove --isnotfc from dev-envd target - Update prepare-wrenn-user.sh: firecracker → cloud-hypervisor paths and capability assignments - Update wrenn-init.sh: disable write_zeroes on rootfs for dm-snapshot compatibility with CH - Update README.md and CLAUDE.md: Firecracker → Cloud Hypervisor throughout
48 lines
1.2 KiB
Plaintext
48 lines
1.2 KiB
Plaintext
# Shared (applies to both control plane and host agent)
|
|
WRENN_DIR=/var/lib/wrenn
|
|
LOG_LEVEL=info
|
|
|
|
# Database
|
|
DATABASE_URL=postgres://wrenn:wrenn@localhost:5432/wrenn?sslmode=disable
|
|
|
|
# Redis
|
|
REDIS_URL=redis://localhost:6379/0
|
|
|
|
# Control Plane
|
|
WRENN_CP_LISTEN_ADDR=:9725
|
|
|
|
# Host Agent
|
|
WRENN_HOST_LISTEN_ADDR=:50051
|
|
WRENN_HOST_INTERFACE=eth0
|
|
WRENN_CP_URL=http://localhost:9725
|
|
WRENN_DEFAULT_ROOTFS_SIZE=5Gi
|
|
WRENN_CH_BIN=/usr/local/bin/cloud-hypervisor
|
|
|
|
# Auth
|
|
JWT_SECRET=
|
|
|
|
# mTLS — CP→Agent channel
|
|
# Generate a self-signed CA with:
|
|
# openssl ecparam -genkey -name P-256 -noout -out ca.key
|
|
# openssl req -new -x509 -key ca.key -days 3650 -out ca.crt -subj "/CN=wrenn-internal-ca"
|
|
# Then set these to the file contents (newlines replaced with \n or use multiline env).
|
|
WRENN_CA_CERT=
|
|
WRENN_CA_KEY=
|
|
|
|
# Channels (notification destinations)
|
|
# AES-256-GCM key for encrypting channel secrets. Generate with: openssl rand -hex 32
|
|
WRENN_ENCRYPTION_KEY=
|
|
|
|
# OAuth
|
|
OAUTH_GITHUB_CLIENT_ID=
|
|
OAUTH_GITHUB_CLIENT_SECRET=
|
|
OAUTH_REDIRECT_URL=https://app.wrenn.dev
|
|
CP_PUBLIC_URL=https://app.wrenn.dev
|
|
|
|
# SMTP — transactional email (optional; omit SMTP_HOST to disable)
|
|
SMTP_HOST=
|
|
SMTP_PORT=587
|
|
SMTP_USERNAME=
|
|
SMTP_PASSWORD=
|
|
SMTP_FROM_EMAIL=noreply@wrenn.dev
|