mirror of https://github.com/edgelesssys/constellation.git synced 2024-09-07 18:12:01 +00:00

History

Daniel Weiße c11631ec11 logging: reduce grpc logging noise (#3329 ) * Normalize gRPC logs to print at warn level only * Fix grpcLogger level enablement --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>		2024-08-29 10:44:22 +02:00
..
cmd	disk-mapper: write failure message to syslog and sleep before reboot	2024-03-07 11:47:51 +01:00
internal	logging: reduce grpc logging noise (#3329 )	2024-08-29 10:44:22 +02:00
recoverproto	deps: update bazel (modules) (#3304 )	2024-08-09 11:00:22 +02:00
README.md

README.md

disk-mapper

The disk-mapper is a binary that runs during the initramfs of a Constellation node.

If running on a new node, it handles setting up the node's state disk by creating an integrity protected encrypted partition.

On a rebooting node, the disk-mapper handles recovery of the node by requesting a decryption key for its state disk. Once the disk is decrypted, the measurement salt is read from disk and used to extend a PCR to mark the node as initialized.

Testing

Integration test is available in disk-mapper/test/integration_test.go. The integration test requires root privileges since it uses dm-crypt. Build and run the test:

go test -c -tags=integration ./disk-mapper/internal/test/
sudo ./test.test