Commit Graph

3964 Commits

Author SHA1 Message Date
Malte Poll
3ce3978063 update state disk passphrase on activation
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
Malte Poll
1b6ecf27ee add cryptsetup wrapper to core
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
Malte Poll
bb56b46e21 implement cryptsetup wrapper to change disk passphrase of constellation state disk
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
Malte Poll
98aced1b36 remove AWS nitro dependencies & add libcryptsetup
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-21 11:45:54 +02:00
katexochen
4e29c38027 Move validators to cloudcmd 2022-04-21 09:06:35 +02:00
katexochen
dad9a97ee2 Rename provider 2022-04-21 09:06:35 +02:00
katexochen
4496755c64 Fix PCR handling 2022-04-21 09:06:35 +02:00
katexochen
de52bf14da Split cmd package 2022-04-21 09:06:35 +02:00
katexochen
63898c42bf Move rollback out of cmd 2022-04-21 09:06:35 +02:00
katexochen
1a9b33d738 Restructure config and constants 2022-04-21 09:06:35 +02:00
katexochen
66bb632a69 Generalized arg validation 2022-04-21 09:06:35 +02:00
Benedict Schlüter
938beec2ef add KMS to multi-coordinator (#68) 2022-04-20 15:22:39 +02:00
Leonard Cohnen
2d9b64df14 fix disk mapper path 2022-04-19 22:24:38 +02:00
Leonard Cohnen
4f6af8d304 remove aws image 2022-04-19 17:10:30 +02:00
Benedict Schlüter
990ca20469 increase gRPC error message verbosity (#62) 2022-04-16 20:57:33 +02:00
Benedict
d869e10a85 Bump coordinator images to 1649852687 2022-04-13 20:30:57 +02:00
Benedict
c1c12fd7d0 coordinator-integrationtest: cover multi-coordinator 2022-04-13 14:05:20 +02:00
Benedict
8d5c50014d coordinator: add new multi-coord gRPC functions 2022-04-13 14:05:20 +02:00
Benedict
f0e35a43d4 peer: save PublicIP instead of publicEndpoint / add multi-coord gRPCs 2022-04-13 14:05:20 +02:00
Malte Poll
55a1aa783f Persist Node State to disk after node activation
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-13 13:07:10 +02:00
Malte Poll
0501d07f4a VPN: Add method to retrieve wireguard private key
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-13 13:07:10 +02:00
Malte Poll
e10a47f255 file handler: Add "mkdirAll" flag
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-13 13:07:10 +02:00
Daniel Weiße
49a1a07049 AB#1902 Ping Coordinator from initramfs for key (#53)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-12 14:24:36 +02:00
Leonard Cohnen
7e990fb91a disable AWS CI 2022-04-12 14:21:29 +02:00
3u13r
1c0f52e04e refactor cli vpn config (#46)
* refactor cli vpn config

Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
2022-04-12 14:20:46 +02:00
Malte Poll
4c73c5076e Integration tests: use simulated TPM in debug coordinator
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
bcd8c36777 Coordinator start: add skeleton to check for pre-existing node state
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
462052427f Add constellation node state
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
be004c971d Coordinator vTPM: add method to check for previous node initialization
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-04-12 14:11:07 +02:00
Malte Poll
af1aca4b34 Coordinator Role: json marshaling as string 2022-04-12 14:11:07 +02:00
Malte Poll
0f35a9a5c2 fix debugd readme url (#54) 2022-04-12 10:19:51 +02:00
datosh
4abb483902 Ref/store ectd (#45)
Improved unit & integration tests for store, by making them independent and test a single thing.
2022-04-12 09:38:10 +02:00
Daniel Weiße
dfee5910b3 Add disk-mapper to build pipeline
Signed-off-by: Daniel Weiße <dw@edgeless.systems>

Co-authored-by: Malte Poll <mp@edgeless.systems>
2022-04-11 15:41:51 +02:00
Daniel Weiße
5548cde22e Add integration test workflows
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-11 15:41:51 +02:00
Daniel Weiße
0e2025b67c Add state disk volume mounter
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-11 15:41:51 +02:00
Daniel Weiße
4b156be15e Add kernel panic util function
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-11 15:41:51 +02:00
Thomas Tendyck
b30101aba6 AB#1898 cli: fix create aws node count 2022-04-07 14:14:26 +02:00
Thomas Tendyck
f0dc48e3c7 AB#1898 cli: fix create aws arg validation 2022-04-07 11:09:40 +02:00
Thomas Tendyck
393c1f7dd1 cli: fix coordinator/node count order 2022-04-06 14:20:19 +02:00
Leonard Cohnen
8b7bafb482 add coordinator count to cli 2022-04-06 11:24:22 +02:00
Thomas Tendyck
dbfbdfe3cd cli: format output in writeOutput 2022-04-05 16:23:48 +02:00
Thomas Tendyck
ea4b9d2d85 coordinator: send additional status log messages to cli in ActivateAsCoordinator 2022-04-05 16:23:48 +02:00
Thomas Tendyck
7315e80374 cli: add output before long-running actions 2022-04-05 16:23:48 +02:00
Malte Poll
daf2280e3f create state disk on constellation create 2022-04-05 15:08:55 +02:00
Malte Poll
ede83bd555 update CoreOS builder pipeline to allow parallel runs 2022-04-04 14:06:23 +02:00
Malte Poll
2cd8d580d8 Bump coreos images to 1649063903 2022-04-04 12:51:00 +02:00
Malte Poll
f77536b38b Use containerd CRI socket in kubernetes 2022-04-04 10:57:54 +02:00
Leonard Cohnen
f74d7e22eb update aws image 2022-04-01 17:18:07 +02:00
Daniel Weiße
604ed96160 Move READMEs to their own packages
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-04-01 16:47:27 +02:00
Malte Poll
aaed8ad1e3 debugd: stop discovery loop once coordinator was downloaded successfully or coordinator binary exists 2022-04-01 16:47:18 +02:00