Commit Graph

978 Commits

Author SHA1 Message Date
Malte Poll
a2e19db70f Set workflow input correctly when building coreOS image manually
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-25 10:31:10 +02:00
Leonard Cohnen
daba25c3d4 bump images 2022-04-25 10:30:28 +02:00
Daniel Weiße
6df6f6dbd0 Disable CGo for CLI
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-22 16:11:54 +02:00
Daniel Weiße
e5e5161520 Move simulated TPM to own package
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-22 16:11:54 +02:00
Daniel Weiße
901c783bc5 Remove replace directive for go-cryptsetup
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-22 08:58:49 +02:00
Benedict Schlüter
84a4ff08ff coordinator-integrationtest: save all peer logs to tmp dir (#63)
Co-authored-by: 3u13r <lc@edgeless.systems>
2022-04-21 15:32:03 +02:00
Daniel Weiße
04b39c17b4 Build disk-mapper by default
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-21 15:26:24 +02:00
Malte Poll
78af3b173f debugd: Correctly handle direct coordinator upload if coordinator was uploaded previously (file already exists)
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 15:15:07 +02:00
Leonard Cohnen
f025afce98 remove rust from readme 2022-04-21 15:11:04 +02:00
Leonard Cohnen
2fb4c15753 remove aws nitro attestation 2022-04-21 14:50:22 +02:00
Daniel Weiße
090afe499d AB#1903 Debug keypushing util program
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-21 13:08:02 +02:00
Daniel Weiße
37aff14cab AB#1903 Push keys to restarting nodes on trigger RPC
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-21 13:08:02 +02:00
Daniel Weiße
152e3985f7 AB#1903 Add grpc interface to push decryption keys
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-21 13:08:02 +02:00
Leonard Cohnen
96d7029367 add cilium cli to image 2022-04-21 12:05:24 +02:00
Malte Poll
3ce3978063 update state disk passphrase on activation
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
Malte Poll
1b6ecf27ee add cryptsetup wrapper to core
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
Malte Poll
bb56b46e21 implement cryptsetup wrapper to change disk passphrase of constellation state disk
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
Malte Poll
98aced1b36 remove AWS nitro dependencies & add libcryptsetup
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
katexochen
4e29c38027 Move validators to cloudcmd 2022-04-21 09:06:35 +02:00
katexochen
dad9a97ee2 Rename provider 2022-04-21 09:06:35 +02:00
katexochen
4496755c64 Fix PCR handling 2022-04-21 09:06:35 +02:00
katexochen
de52bf14da Split cmd package 2022-04-21 09:06:35 +02:00
katexochen
63898c42bf Move rollback out of cmd 2022-04-21 09:06:35 +02:00
katexochen
1a9b33d738 Restructure config and constants 2022-04-21 09:06:35 +02:00
katexochen
66bb632a69 Generalized arg validation 2022-04-21 09:06:35 +02:00
Benedict Schlüter
938beec2ef add KMS to multi-coordinator (#68) 2022-04-20 15:22:39 +02:00
Leonard Cohnen
2d9b64df14 fix disk mapper path 2022-04-19 22:24:38 +02:00
Leonard Cohnen
4f6af8d304 remove aws image 2022-04-19 17:10:30 +02:00
Benedict Schlüter
990ca20469 increase gRPC error message verbosity (#62) 2022-04-16 20:57:33 +02:00
Benedict
d869e10a85 Bump coordinator images to 1649852687 2022-04-13 20:30:57 +02:00
Benedict
c1c12fd7d0 coordinator-integrationtest: cover multi-coordinator 2022-04-13 14:05:20 +02:00
Benedict
8d5c50014d coordinator: add new multi-coord gRPC functions 2022-04-13 14:05:20 +02:00
Benedict
f0e35a43d4 peer: save PublicIP instead of publicEndpoint / add multi-coord gRPCs 2022-04-13 14:05:20 +02:00
Malte Poll
55a1aa783f Persist Node State to disk after node activation
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-13 13:07:10 +02:00
Malte Poll
0501d07f4a VPN: Add method to retrieve wireguard private key
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-13 13:07:10 +02:00
Malte Poll
e10a47f255 file handler: Add "mkdirAll" flag
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-13 13:07:10 +02:00
Daniel Weiße
49a1a07049 AB#1902 Ping Coordinator from initramfs for key (#53)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-12 14:24:36 +02:00
Leonard Cohnen
7e990fb91a disable AWS CI 2022-04-12 14:21:29 +02:00
3u13r
1c0f52e04e refactor cli vpn config (#46)
* refactor cli vpn config

Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
2022-04-12 14:20:46 +02:00
Malte Poll
4c73c5076e Integration tests: use simulated TPM in debug coordinator
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
bcd8c36777 Coordinator start: add skeleton to check for pre-existing node state
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
462052427f Add constellation node state
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
be004c971d Coordinator vTPM: add method to check for previous node initialization
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
af1aca4b34 Coordinator Role: json marshaling as string 2022-04-12 14:11:07 +02:00
Malte Poll
0f35a9a5c2 fix debugd readme url (#54) 2022-04-12 10:19:51 +02:00
datosh
4abb483902 Ref/store ectd (#45)
Improved unit & integration tests for store, by making them independent and test a single thing.
2022-04-12 09:38:10 +02:00
Daniel Weiße
dfee5910b3 Add disk-mapper to build pipeline
Signed-off-by: Daniel Weiße <dw@edgeless.systems>

Co-authored-by: Malte Poll <mp@edgeless.systems>
2022-04-11 15:41:51 +02:00
Daniel Weiße
5548cde22e Add integration test workflows
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-11 15:41:51 +02:00
Daniel Weiße
0e2025b67c Add state disk volume mounter
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-11 15:41:51 +02:00
Daniel Weiße
4b156be15e Add kernel panic util function
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-11 15:41:51 +02:00