mirror of
https://github.com/edgelesssys/constellation.git
synced 2025-11-13 00:50:38 -05:00
f8001efbc0
* Merge enforced and expected measurements * Update measurement generation to new format * Write expected measurements hex encoded by default * Allow hex or base64 encoded expected measurements * Allow hex or base64 encoded clusterID * Allow security upgrades to warnOnly flag * Upload signed measurements in JSON format * Fetch measurements either from JSON or YAML * Use yaml.v3 instead of yaml.v2 * Error on invalid enforced selection * Add placeholder measurements to config * Update e2e test to new measurement format Signed-off-by: Daniel Weiße <dw@edgeless.systems> |
||
|---|---|---|
| .. | ||
| server | ||
| virtwrapper | ||
| Dockerfile | ||
| main.go | ||
| README.md | ||
QEMU metadata API
This program provides a metadata API for Constellation on QEMU.
Dependencies
To interact with QEMU libvirt is required.
Install the C libraries:
On Ubuntu:
sudo apt install libvirt-dev
On Fedora:
sudo dnf install libvirt-devel
Firewalld
If your system uses firewalld virtmanager will add itself to the firewall rules managed by firewalld.
Your VMs might be unable to communicate with the host.
To fix this open port 8080 (the default port for the QEMU metadata API) for the libvirt zone:
# Open the port
sudo firewall-cmd --zone libvirt --add-port 8080/tcp --permanent
Docker image
Build the image:
DOCKER_BUILDKIT=1 docker build -t ghcr.io/edgelesssys/constellation/qemu-metadata-api:latest -f hack/qemu-metadata-api/Dockerfile .
A container of the image is automatically started by Terraform. You can also run the image manually using the following command:
docker run -it --rm \
--network host \
-v /var/run/libvirt/libvirt-sock:/var/run/libvirt/libvirt-sock \
ghcr.io/edgelesssys/constellation/qemu-metadata-api:latest