There shouldn't be any other scripts necessary when using the SQLite
data in standalone mode. The code that opens the database is here:
https://github.com/google/certificate-transparency/blob/master/cpp/log/sqlite_db.cc#L55
Did you create the /home/test/logger.db database beforehand? The code
here will create the database *and* the tables if opening the database
fails, so if you create the database file by hand (with the
command-line "sqlite3" tool, for example), you might have the problem
you're describing?
If that's the case, simply deleting /home/test/logger.db and
restarting the server should do the trick.
In the case where the database opens successfully, we didn't want to
get into the business of verifying the schema, and potentially
evolving it, as this is a whole other kettle of fish!
You use "sudo" with your command-line there, by the way, this
shouldn't be necessary. The default port (specified using --port) is
9999, which isn't privileged, and I believe that's the only reason you
might want to use "sudo". It is preferable to not run in privileged
mode, of course, for security reasons (in case of an exploitable bug
in our code!).
For production use (obviously not your current situation, with the
"--i_know_stand_alone_mode_can_lose_data" flag!), I would recommend
using a reverse proxy setup in front (such as an Nginx or Apache
reverse proxy setup), which could also be used to provide HTTPS
termination, as well as load balancing between the ct-server cluster
nodes, and this reverse proxy can be configured to access the nodes on
a different port, of course.
If you want to try the clustered setup (which can work on a single
node), you'll need to do an initial configuration using the "initlog"
subcommand of the "cpp/tools/ct-clustertool" binary. If you run only
one node, you will have to set the "minimum_serving_nodes"
configuration to 1, for obvious reasons (please use a higher setting
for production use!).
> --
> You received this message because you are subscribed to the Google Groups
> "certificate-transparency" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to
certificate-transp...@googlegroups.com.
> For more options, visit
https://groups.google.com/d/optout.