kubectl scale deployment <your deployment> --replicas <#replicas>
I believe we should enforce the following wrt. the
SecurityVersiondoesn't make much sense etc.
With the goal in mind of giving people guidance and the aspect that those are the only two combinations of values that make sense in practice the restriction could actually be beneficial. In case someone comes up with another combination in an obscure use-case we can easily add that later on.
OE_LOG_LEVEL=INFO ego run ...shows some more debugging output, at least for my sample app without cgo
that looks much better.
stdbuf -o0 ego sign helloworld 2021-02-25T14:27:12+0000.659841Z [(H)ERROR] tid(0x7f323f586d40) | Unsupported elf relocation type 1 (oe_result_t=OE_UNSUPPORTED_ENCLAVE_IMAGE) [/edgelessrt/build/3rdparty/openenclave/openenclave-src/host/sgx/elf.c:elf64_load_relocations:1923] 2021-02-25T14:27:12+0000.659914Z [(H)ERROR] tid(0x7f323f586d40) | :OE_INVALID_IMAGE [/edgelessrt/build/3rdparty/openenclave/openenclave-src/host/sgx/loadelf.c:_load_elf_image:434] 2021-02-25T14:27:12+0000.659932Z [(H)ERROR] tid(0x7f323f586d40) | :OE_INVALID_IMAGE [/edgelessrt/build/3rdparty/openenclave/openenclave-src/host/sgx/loadelf.c:oe_load_elf_enclave_image:877] double free or corruption (!prev)
It seems that OE complains when linking the lib that is used for the cgo call.