I am trying to test vault-ethereum as a solution to replace a home made app that sign and send transaction to the blockchain.
In this context, i have checkout the source code vault-ethereum then built it. However, i am not able to install it in vault. Am getting the following error when i run the command:
vault write sys/plugins/catalog/ethereum-plugin \
sha_256="${SHASUM256}" \
command="vault-ethereum --ca-cert=$HOME/etc/vault/file/root.crt --client-cert=$HOME/etc/vault/file/vault.crt --client-key=$HOME/etc/vault/file/vault.key"
Error writing data to sys/plugins/catalog/ethereum-plugin: Error making API request.
URL: PUT https://127.0.0.1:8200/v1/sys/plugins/catalog/ethereum-plugin
Code: 500. Errors:
* 1 error occurred:
* rpc error: code = Unknown desc = timeout waiting for connection info
The log file says that the CA is unknown, though i have added and trusted it in keychain
2019-03-21T14:55:01.027+0100 [INFO] http: TLS handshake error from 127.0.0.1:59317: EOF
2019-03-21T14:55:01.030+0100 [INFO] http: TLS handshake error from 127.0.0.1:59318: EOF
2019-03-21T14:55:54.459+0100 [INFO] core: vault is unsealed
2019-03-21T14:55:54.459+0100 [INFO] core.cluster-listener: starting listener: listener_address=127.0.0.1:8201
2019-03-21T14:55:54.460+0100 [INFO] core.cluster-listener: serving cluster requests: cluster_listen_address=127.0.0.1:8201
2019-03-21T14:55:54.460+0100 [INFO] core: post-unseal setup starting
2019-03-21T14:55:54.460+0100 [INFO] core: loaded wrapping token key
2019-03-21T14:55:54.461+0100 [INFO] core: upgrading plugin information: plugins=[]
2019-03-21T14:55:54.461+0100 [INFO] core: successfully setup plugin catalog: plugin-directory=/Users/selim/etc/vault/file/plugins
2019-03-21T14:55:54.461+0100 [INFO] core: successfully mounted backend: type=system path=sys/
2019-03-21T14:55:54.461+0100 [INFO] core: successfully mounted backend: type=identity path=identity/
2019-03-21T14:55:54.462+0100 [INFO] core: successfully mounted backend: type=cubbyhole path=cubbyhole/
2019-03-21T14:55:54.463+0100 [INFO] core: successfully enabled credential backend: type=token path=token/
2019-03-21T14:55:54.536+0100 [WARN] auth.example-auth-plugin.auth_example-auth-plugin_c2d56764.example-auth-plugin: error closing client during Kill: metadata=true err="rpc error: code = Canceled desc = grpc: the client connection is closing"
2019-03-21T14:55:54.537+0100 [INFO] core: successfully enabled credential backend: type=example-auth-plugin path=example/
2019-03-21T14:55:54.537+0100 [INFO] rollback: starting rollback manager
2019-03-21T14:55:54.537+0100 [INFO] core: restoring leases
2019-03-21T14:55:54.538+0100 [INFO] expiration: lease restore complete
2019-03-21T14:55:54.538+0100 [INFO] identity: entities restored
2019-03-21T14:55:54.538+0100 [INFO] identity: groups restored
2019-03-21T14:55:54.538+0100 [INFO] core: post-unseal setup complete
2019-03-21T14:56:20.283+0100 [INFO] http: TLS handshake error from 127.0.0.1:59324: remote error: tls: unknown certificate authority
2019-03-21T14:56:32.541+0100 [WARN] received plugin exited before we could connect attempting as db plugin, attempting as auth/secret plugin
2019-03-21T14:56:54.665+0100 [INFO] expiration: revoked lease: lease_id=sys/wrapping/wrap/h171b892f8ff7e2dd5554da672b16eb89bb4d9670144204d9690179f83a2d62ab
2019-03-21T15:04:27.634+0100 [WARN] received plugin exited before we could connect attempting as db plugin, attempting as auth/secret plugin
{
"time": "2019-03-21T17:13:12.269035Z",
"type": "request",
"auth": {
"client_token": "hmac-sha256:e6d899de896cf18f232bae0f4d1c96495296c89536e58cd7aa28c80359ec8ae3",
"accessor": "hmac-sha256:eaebdc29a3400595b1e77cc667545c1c80c6d0ab4c09181d73941fc5a0ce4960",
"display_name": "root",
"policies": [
"root"
],
"token_policies": [
"root"
],
"metadata": null,
"entity_id": "",
"token_type": "service"
},
"request": {
"id": "010a5627-32b1-2ddf-3c8a-392c2b09232d",
"operation": "update",
"client_token": "hmac-sha256:e6d899de896cf18f232bae0f4d1c96495296c89536e58cd7aa28c80359ec8ae3",
"client_token_accessor": "hmac-sha256:eaebdc29a3400595b1e77cc667545c1c80c6d0ab4c09181d73941fc5a0ce4960",
"namespace": {
"id": "root",
"path": ""
},
"path": "sys/plugins/catalog/ethereum-plugin",
"data": {
"command": "hmac-sha256:d8e3a02e349f030613315e9c49d2030ff1c6a44c064acc78b67a9fa66807b975",
"sha_256": "hmac-sha256:62999780515d3a938c2b8a0d57eec9ef6588b859c7153b9dc09bb1c2b5355af7"
},
"policy_override": false,
"remote_address": "127.0.0.1",
"wrap_ttl": 0,
"headers": {
}
},
"error": ""
}{
"time": "2019-03-21T17:13:17.458343Z",
"type": "response",
"auth": {
"client_token": "hmac-sha256:e6d899de896cf18f232bae0f4d1c96495296c89536e58cd7aa28c80359ec8ae3",
"accessor": "hmac-sha256:eaebdc29a3400595b1e77cc667545c1c80c6d0ab4c09181d73941fc5a0ce4960",
"display_name": "root",
"policies": [
"root"
],
"token_policies": [
"root"
],
"metadata": null,
"entity_id": "",
"token_type": "service"
},
"request": {
"id": "010a5627-32b1-2ddf-3c8a-392c2b09232d",
"operation": "update",
"client_token": "hmac-sha256:e6d899de896cf18f232bae0f4d1c96495296c89536e58cd7aa28c80359ec8ae3",
"client_token_accessor": "hmac-sha256:eaebdc29a3400595b1e77cc667545c1c80c6d0ab4c09181d73941fc5a0ce4960",
"namespace": {
"id": "root",
"path": ""
},
"path": "sys/plugins/catalog/ethereum-plugin",
"data": {
"command": "hmac-sha256:d8e3a02e349f030613315e9c49d2030ff1c6a44c064acc78b67a9fa66807b975",
"sha_256": "hmac-sha256:62999780515d3a938c2b8a0d57eec9ef6588b859c7153b9dc09bb1c2b5355af7"
},
"policy_override": false,
"remote_address": "127.0.0.1",
"wrap_ttl": 0,
"headers": {
}
},
"response": {
"headers": null
},
"error": "1 error occurred:\n\t* rpc error: code = Unknown desc = timeout waiting for connection info\n\n"
}
"default_lease_ttl" = "24h"
"disable_mlock" = "true"
"max_lease_ttl" = "24h"
"ui" = "true"
"backend" "file" {
"path" = "/Users/selim/var/lib/vault/file/data"
}
"api_addr" = "https://localhost:8200"
listener "tcp" {
"address" = "127.0.0.1:8200"
"tls_cert_file" = "/Users/selim/etc/vault/file/vault.crt"
"tls_client_ca_file" = "/Users/selim/etc/vault/file/root.crt"
"tls_key_file" = "/Users/selim/etc/vault/file/vault.key"
}
"plugin_directory" = "/Users/selim/etc/vault/file/plugins"
VAULT_HOME=/Users/selim/opt/vault
VAULT_ADDR=https://127.0.0.1:8200
VAULT_CACERT=/Users/selim/etc/vault/file/root.crt