use common boostrapperhost field and wait before reading pcr values (#281)

* use common boostrapperhost field and wait before reading pcr values * use wait to be more explicit about goal Signed-off-by: Fabian Kammel <fk@edgeless.systems> Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
2024-10-01 01:36:09 -04:00 · 2022-07-20 10:47:22 +02:00 · 2022-07-20 10:47:22 +02:00 · 3842e50c49
commit 3842e50c49
parent 877fc7a0d2
1 changed files with 3 additions and 6 deletions
--- a/.github/actions/constellation_measure/action.yml
+++ b/.github/actions/constellation_measure/action.yml
@ -41,17 +41,14 @@ runs:
    # for why we ignore certain measurement values.
    - name: Fetch PCRs
      run: |
+        KUBECONFIG="$PWD/constellation-admin.conf" kubectl wait ds/verification-service -n kube-system --for condition=available
+        CONSTELL_IP=$(jq -r ".bootstrapperhost" constellation-state.json)
+        pcr-reader --constell-ip ${CONSTELL_IP} -format yaml > measurements.yaml
        case $CSP in
          azure)
-            FIRST_NODE=$(jq -r ".azurecontrolplanes | keys | first" constellation-state.json)
-            CONSTELL_IP=$(jq -r ".azurecontrolplanes.\"${FIRST_NODE}\".PublicIP" constellation-state.json)
-            pcr-reader --constell-ip ${CONSTELL_IP} -format yaml > measurements.yaml
            yq e 'del(.[0,6,10,11,12,13,14,15,16,17,18,19,20,21,22,23])' -i measurements.yaml
            ;;
          gcp)
-            FIRST_NODE=$(jq -r ".gcpcontrolplanes | keys | first" constellation-state.json)
-            CONSTELL_IP=$(jq -r ".gcpcontrolplanes.\"${FIRST_NODE}\".PublicIP" constellation-state.json)
-            pcr-reader --constell-ip ${CONSTELL_IP} -format yaml > measurements.yaml
            yq e 'del(.[11,12,13,14,15,16,17,18,19,20,21,22,23])' -i measurements.yaml
            ;;
        esac