Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-11-11 08:15:01 -05:00
Code Issues Projects Releases Packages Wiki Activity

join-service: add AWS attestation

Browse source
This commit is contained in:
Leonard Cohnen 2022-10-30 03:36:58 +01:00 committed by 3u13r
parent b69d19c3d6
commit 3aa0177333
2 changed files with 11 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
internal/watcher/validator.go
View file

@ -15,6 +15,7 @@ import (
"sync" "sync"
"github.com/edgelesssys/constellation/v2/internal/atls" "github.com/edgelesssys/constellation/v2/internal/atls"
"github.com/edgelesssys/constellation/v2/internal/attestation/aws"
"github.com/edgelesssys/constellation/v2/internal/attestation/azure/snp" "github.com/edgelesssys/constellation/v2/internal/attestation/azure/snp"
"github.com/edgelesssys/constellation/v2/internal/attestation/azure/trustedlaunch" "github.com/edgelesssys/constellation/v2/internal/attestation/azure/trustedlaunch"
"github.com/edgelesssys/constellation/v2/internal/attestation/gcp" "github.com/edgelesssys/constellation/v2/internal/attestation/gcp"
@ -40,6 +41,10 @@ type Updatable struct {
func NewValidator(log *logger.Logger, csp string, fileHandler file.Handler, azureCVM bool) (*Updatable, error) { func NewValidator(log *logger.Logger, csp string, fileHandler file.Handler, azureCVM bool) (*Updatable, error) {
var newValidator newValidatorFunc var newValidator newValidatorFunc
switch cloudprovider.FromString(csp) { switch cloudprovider.FromString(csp) {
case cloudprovider.AWS:
newValidator = func(m map[uint32][]byte, e []uint32, _ []byte, _ bool, log *logger.Logger) atls.Validator {
return aws.NewValidator(m, e, log)
}
case cloudprovider.Azure: case cloudprovider.Azure:
if azureCVM { if azureCVM {
newValidator = func(m map[uint32][]byte, e []uint32, idkeydigest []byte, enforceIdKeyDigest bool, log *logger.Logger) atls.Validator { newValidator = func(m map[uint32][]byte, e []uint32, idkeydigest []byte, enforceIdKeyDigest bool, log *logger.Logger) atls.Validator {

6
joinservice/cmd/main.go
View file

@ -16,6 +16,7 @@ import (
"time" "time"
"github.com/edgelesssys/constellation/v2/internal/atls" "github.com/edgelesssys/constellation/v2/internal/atls"
awscloud "github.com/edgelesssys/constellation/v2/internal/cloud/aws"
azurecloud "github.com/edgelesssys/constellation/v2/internal/cloud/azure" azurecloud "github.com/edgelesssys/constellation/v2/internal/cloud/azure"
"github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider" "github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider"
gcpcloud "github.com/edgelesssys/constellation/v2/internal/cloud/gcp" gcpcloud "github.com/edgelesssys/constellation/v2/internal/cloud/gcp"
@ -118,6 +119,11 @@ func getVPCIP(ctx context.Context, provider string) (string, error) {
var err error var err error
switch cloudprovider.FromString(provider) { switch cloudprovider.FromString(provider) {
case cloudprovider.AWS:
metadata, err = awscloud.New(ctx)
if err != nil {
return "", err
}
case cloudprovider.Azure: case cloudprovider.Azure:
metadata, err = azurecloud.NewMetadata(ctx) metadata, err = azurecloud.NewMetadata(ctx)
if err != nil { if err != nil {