ctclone

command

v0.0.0-...-7d7216e Latest Latest Go to latest Published: May 2, 2024 License: Apache-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/google/trillian-examples

Links

Open Source Insights

README ¶

`ctclone`

This tool clones a Certificate Transparency (RFC6962) log. See background and database setup in the parent docs.

Cloning

Assuming the database is provisioned, the log can be downloaded with:

go run ./clone/cmd/ctclone --alsologtostderr --v=1 --log_url https://ct.googleapis.com/logs/xenon2022/ --mysql_uri 'clonetool:letmein@tcp(localhost)/google_xenon2022'

Tuning

In addition the general tuning flags (workers and write_batch_size) mentioned in the parents docs, the CT clone tool also has fetch_batch_size. As a rule of thumb, this should be set to the maximum size that the log supports for a single batch.

Docker

Docker Compose

docker-compose.yaml is provided as an example that will clone a log into a database hosted in a local container. The benefit of this is that it can be run as a single command:

docker compose up -d

For Raspberry Pi users, there is a slight change in order to override the DB:

docker compose -f docker-compose.yaml -f docker-compose.rpi.yaml up -d

This will bring up two containers: ctclone-db-1 and ctclone-clone-xenon2022-1. It is expected that users will write their own tools to query the DB, but the following command demonstrates the leaves being queried from the command line:

docker exec -i ctclone-db-1 /usr/bin/mysql -uctclone -pletmein -Dxenon2022 <<< "select * from leaves where id < 5;"

The sample files here clone xenon2022, though this can be changed to another log by updating the docker-compose.yaml and the .env file. For users that would like to clone multiple logs doing this, creating multiple databases inside the db container is possible but more complicated.

Direct

To build a docker image, run the following from the trillian-examples root directory:

docker build . -t ctclone -f ./clone/cmd/ctclone/Dockerfile

This can be pointed at a local MySQL instance running outside of docker using:

docker run --name clone_xenon2022 -d ctclone --alsologtostderr --v=1 --log_url https://ct.googleapis.com/logs/xenon2022/ --mysql_uri 'clonetool:letmein@tcp(host.docker.internal)/google_xenon2022'

Documentation ¶

Overview ¶

ctclone is a one-shot tool for downloading entries from a CT log.

Source Files ¶

View all Source files

ctclone.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL