mirror of https://github.com/edgelesssys/constellation.git synced 2025-05-12 19:22:25 -04:00

History

miampf f16ccf5679 rewrote packages keyservice joinservice upgrade-agent measurement-reader debugd disk-mapper rewrote joinservice main rewrote some unit tests rewrote upgrade-agent + some grpc functions rewrote measurement-reader rewrote debugd removed unused import removed forgotten zap reference in measurements reader rewrote disk-mapper + tests rewrote packages verify disk-mapper malicious join bootstrapper attestationconfigapi versionapi internal/cloud/azure disk-mapper tests image/upload/internal/cmd rewrote verify (WIP with loglevel increase) rewrote forgotten zap references in disk-mapper rewrote malicious join rewrote bootstrapper rewrote parts of internal/ rewrote attestationconfigapi (WIP) rewrote versionapi cli rewrote internal/cloud/azure rewrote disk-mapper tests (untested by me rn) rewrote image/upload/internal/cmd removed forgotten zap references in verify/cmd rewrote packages hack/oci-pin hack/qemu-metadata-api debugd/internal/debugd/deploy hack/bazel-deps-mirror cli/internal/cmd cli-k8s-compatibility rewrote hack/qemu-metadata-api/server rewrote debugd/internal/debugd/deploy rewrote hack/bazel-deps-mirror rewrote rest of hack/qemu-metadata-api rewrote forgotten zap references in joinservice server rewrote cli/internal/cmd rewrote cli-k8s-compatibility rewrote packages internal/staticupload e2d/internal/upgrade internal/constellation/helm internal/attestation/aws/snp internal/attestation/azure/trustedlaunch joinservice/internal/certcache/amkds some missed unit tests rewrote e2e/internal/upgrade rewrote internal/constellation/helm internal/attestation/aws/snp internal/attestation/azure/trustedlaunch joinservice/internal/certcache/amkds search and replace test logging over all left *_test.go		2024-02-08 13:14:14 +01:00
..
server	rewrote packages	2024-02-08 13:14:14 +01:00
virtwrapper	bazel: allow "bazel test" to work without cgo dependencies	2023-08-18 16:36:13 +02:00
BUILD.bazel	bazel: provide runtime dependencies of libvirt where needed	2023-12-01 09:35:33 +01:00
main.go	rewrote packages	2024-02-08 13:14:14 +01:00
main_cross.go	qemu-metadata-api: allow building without cgo dependencies for linting	2023-05-23 13:44:56 +02:00
README.md	bazel: remove apko and Dockerfile where Bazel is used to build container images	2023-04-18 15:35:15 +02:00

README.md

QEMU metadata API

This program provides a metadata API for Constellation on QEMU.

Dependencies

To interact with QEMU libvirt is required. Install the C libraries:

On Ubuntu:

sudo apt install libvirt-dev

On Fedora:

sudo dnf install libvirt-devel

Firewalld

If your system uses firewalld virtmanager will add itself to the firewall rules managed by firewalld. Your VMs might be unable to communicate with the host.

To fix this open port 8080 (the default port for the QEMU metadata API) for the libvirt zone:

# Open the port
sudo firewall-cmd --zone libvirt --add-port 8080/tcp --permanent

Docker image

Build the image:

bazel build //hack/qemu-metadata-api:qemumetadata
bazel build //bazel/release:qemumetadata_sum
bazel build //bazel/release:qemumetadata_tar
bazel run //bazel/release:qemumetadata_push

A container of the image is automatically started by Terraform. You can also run the image manually using the following command:

docker run -it --rm \
    --network host \
    -v /var/run/libvirt/libvirt-sock:/var/run/libvirt/libvirt-sock \
    ghcr.io/edgelesssys/constellation/qemu-metadata-api:latest