Commit Graph

38 Commits

Author SHA1 Message Date
mudler
076a50b2e9 Drop unnecessary condition
Signed-off-by: mudler <mudler@c3os.io>
2023-01-24 17:53:38 +01:00
mudler
f8e7a0df87 Revert "Change function return style"
This reverts commit 968ff53267.
v0.2.3
2023-01-24 17:40:00 +01:00
mudler
968ff53267 Change function return style
Signed-off-by: mudler <mudler@c3os.io>
2023-01-24 16:19:33 +01:00
mudler
a95436bf16 Clean up default secret names v0.2.2 2023-01-24 12:16:09 +01:00
mudler
dfe29aa24f Return a payload
Signed-off-by: mudler <mudler@c3os.io>
v0.2.1
2023-01-24 12:03:08 +01:00
mudler
db2b6758de 🌱 Handle case when secret doesn't exist
Signed-off-by: mudler <mudler@c3os.io>
2023-01-23 23:00:16 +01:00
Dimitris Karakasilis
317c6d87b4 Merge pull request #10 from kairos-io/local_encryption
🌱 Enable local encryption, remote now partially uses TPM
v0.2.0
2023-01-19 16:27:52 +02:00
Dimitris Karakasilis
8898eb8ae9 Small refactorings (renaming vars, create constants etc)
Signed-off-by: Ettore Di Giacinto <ettore@spectrocloud.com>
2023-01-19 16:24:39 +02:00
Ettore Di Giacinto
91c24586ea Improve naming of functions and add comments
Signed-off-by: Dimitris Karakasilis <dimitris@spectrocloud.com>
2023-01-19 16:06:53 +02:00
Dimitris Karakasilis
eefd5f2c2c Extract method and simplify "if" logic
Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2023-01-19 15:46:35 +02:00
mudler
83f529b53d 🌱 Small fixups
Signed-off-by: mudler <mudler@c3os.io>
2023-01-19 14:24:33 +01:00
mudler
2c8a589906 Enable local encryption, remote now partially uses TPM
Signed-off-by: mudler <mudler@c3os.io>
2023-01-18 23:32:27 +01:00
Dimitris Karakasilis
9f7abe321a Merge pull request #9 from kairos-io/use_tpm_helpers
Use tpm helpers
2023-01-18 17:26:15 +02:00
mudler
2603757f2c Simplify challenge
Signed-off-by: mudler <mudler@c3os.io>
2023-01-18 16:09:52 +01:00
mudler
df0fb4a341 ⬆️ Point to tpm-helpers
Signed-off-by: mudler <mudler@c3os.io>
2023-01-18 16:02:17 +01:00
Dimitris Karakasilis
12edf4d4cf Merge pull request #8 from kairos-io/399-configuration-from-file
399 configuration from file
v0.1.0
2023-01-18 16:58:38 +02:00
Dimitris Karakasilis
b3ca9687c6 Implement test and remove TODOs
Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2023-01-18 16:56:49 +02:00
Dimitris Karakasilis
72829108df Extract client code to separate package and test it
- add new suite to the pipeline and fix Earthly to run tests
- read configuration from file
- the "kcrypt" section is our configuration now
- move configuration logic in `kcrypt` repository

Part of #399

Signed-off-by: Mauro Morales <mauro.morales@spectrocloud.com>
Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2023-01-18 15:25:04 +02:00
Dimitris Karakasilis
a49495e47a Merge pull request #7 from kairos-io/380-traceback-partition
380 traceback partition
2022-11-17 15:06:04 +02:00
Dimitris Karakasilis
83bba2f0cf Introduce a test suite and an earthly target to run it
Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2022-11-17 12:57:09 +02:00
Dimitris Karakasilis
3b9477b6ea Add omitempty on PartitionSpec fields to make the optional
Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2022-11-17 12:56:59 +02:00
Dimitris Karakasilis
aa736211af Don't go frenzy when a TPM is not found. Just return.
Because there is no guarantee that a TPM will eventually be found.

Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2022-11-11 09:54:19 +02:00
Dimitris Karakasilis
7a07d5c45b Change sealedvolume CRD to add more fields to the partition
We use those field to identify which partition is requested. On the
client side, the label is not available when the partition is encrypted.
We allow the client to request the passphrase for a partition using the
partition name (e.g. /dev/sdb1) or the UUID (as returned by blkid).

Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2022-11-11 09:54:19 +02:00
Dimitris Karakasilis
a3df62df03 [WIP] Send more data over to the escrow server
in order to identify the partition. The label is not available before
the filesystem is descrypted (post-install). In that case the server can
look up the partition in the configuration using the name or the
mountpoint.

Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2022-11-11 09:54:19 +02:00
mudler
9e8249c730 Minor fixups 2022-10-18 17:04:48 +02:00
mudler
4236420ed5 📖 Update README 2022-10-18 15:44:09 +02:00
mudler
21681a58fd Dial-in re-attempts 2022-10-18 15:43:58 +02:00
Ettore Di Giacinto
a2cb5d95fb Skip errors when evaluating cmdline (best-effort) 2022-10-18 12:27:48 +00:00
Ettore Di Giacinto
06b8dc9c58 🐛 Fixup unmarshal to anonymous struct 2022-10-17 22:27:39 +02:00
Ettore Di Giacinto
d9da1b4090 Merge pull request #1 from kairos-io/tests
Add Earthfile
2022-10-17 22:10:26 +02:00
Ettore Di Giacinto
770814996b Attempt to get also from part name 2022-10-17 19:08:45 +00:00
Ettore Di Giacinto
a00353fda1 Add Earthfile 2022-10-17 16:44:25 +02:00
Ettore Di Giacinto
673bfcbd56 Slightly change spec 2022-10-13 22:21:06 +00:00
Ettore Di Giacinto
7c6fa7df06 🎨 Small fixups 2022-10-13 21:35:26 +00:00
Ettore Di Giacinto
6124f9aec9 🤖 Fixup workflow 2022-10-13 20:35:58 +00:00
Ettore Di Giacinto
05d48347d7 Initial import 2022-10-13 20:34:44 +00:00
Ettore Di Giacinto
dd50775dfa 🤖 Add .devcontainer 2022-10-08 22:53:00 +00:00
Ettore Di Giacinto
48488a69eb Create LICENSE 2022-10-09 00:30:32 +02:00