AB#2111 Deploy activation service on cluster init (#205)

* Deploy activation service on cluster init * Use base image with CA certificates for activation service * Improve KMS server Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2025-08-06 05:54:28 -04:00 · 2022-06-15 16:00:48 +02:00 · 2022-06-15 16:00:48 +02:00 · 4842d29aff
commit 4842d29aff
parent 84ca9e3070
29 changed files with 542 additions and 102 deletions
--- a/internal/constants/constants.go
+++ b/internal/constants/constants.go
@ -22,11 +22,14 @@ const (
 	// Ports.
 	//

-	CoordinatorPort = 9000
-	EnclaveSSHPort  = 2222
-	SSHPort         = 22
-	WireguardPort   = 51820
-	NVMEOverTCPPort = 8009
+	ActivationServicePort     = 9090
+	ActivationServiceNodePort = 30090
+	KMSPort                   = 9000
+	CoordinatorPort           = 9000
+	EnclaveSSHPort            = 2222
+	SSHPort                   = 22
+	WireguardPort             = 51820
+	NVMEOverTCPPort           = 8009
 	// Default NodePort Range
 	// https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
 	NodePortFrom   = 30000
@ -46,8 +49,9 @@ const (
 	CoreOSAdminConfFilename = "/etc/kubernetes/admin.conf"

 	// Filenames for the Activation service.
-	ActivationMeasurementsFilename = "/var/config/measurements"
-	ActivationIDFilename           = "/var/config/id"
+	ActivationBasePath             = "/var/config"
+	ActivationMeasurementsFilename = "measurements"
+	ActivationIDFilename           = "id"

 	//
 	// Cryptographic constants.