node-installer

command module

v0.0.0-...-eb2ba85 Latest Latest Go to latest Published: Jul 26, 2024 License: AGPL-3.0 Imports: 17 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

README ¶

Contrast node installer

This program runs as a daemonset on every CC-enabled node of a Kubernetes cluster. It expects the host filesystem of the node to be mounted under /host. On start, it will read a configuration file under $CONFIG_DIR/contrast-node-install.json and install binary artifacts on the host filesystem according to the configuration. After installing binary artifacts, it installs and patches configuration files for the Contrast runtime class contrast-cc-isolation and restarts containerd.

Configuration

By default, the installer ships with a config file under /config/contrast-node-install.json, which takes binary artifacts from the container image. If desired, you can replace the configuration using a Kubernetes configmap by mounting it into the container.

files: List of files to be installed.
files[*].url: Source of the file's content. Use http:// or https:// to download it or file:// to copy a file from the container image.
files[*].path: Target location of the file on the host filesystem.
files[*].integrity: Expected Subresource Integrity (SRI) digest of the file. Only required if URL starts with http:// or https://.
runtimeHandlerName: Name of the container runtime.
debugRuntime: If set to true, enables serial console access via vsock. A special, debug-capable IGVM file has to be used for this to work.

Consider the following example:

{
    "files": [
        {
            "url": "https://cdn.confidential.cloud/contrast/node-components/2024-03-13/kata-containers.img",
            "path": "/opt/edgeless/share/kata-containers.img",
            "integrity": "sha256-EdFywKAU+xD0BXmmfbjV4cB6Gqbq9R9AnMWoZFCM3A0="
        },
        {
            "url": "https://cdn.confidential.cloud/contrast/node-components/2024-03-13/kata-containers-igvm.img",
            "path": "/opt/edgeless/share/kata-containers-igvm.img",
            "integrity": "sha256-E9Ttx6f9QYwKlQonO/fl1bF2MNBoU4XG3/HHvt9Zv30="
        },
        {
            "url": "https://cdn.confidential.cloud/contrast/node-components/2024-03-13/cloud-hypervisor-cvm",
            "path": "/opt/edgeless/bin/cloud-hypervisor-snp",
            "integrity": "sha256-coTHzd5/QLjlPQfrp9d2TJTIXKNuANTN7aNmpa8PRXo="
        },
        {
            "url": "file:///opt/edgeless/bin/containerd-shim-contrast-cc-v2",
            "path": "/opt/edgeless/bin/containerd-shim-contrast-cc-v2",
        }
    ],
    "runtimeHandlerName": "contrast-cc",
    "debugRuntime": false
}

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

node-installer.go

Directories ¶

Path	Synopsis
internal
asset
config
constants
fileop
platforms The platforms package provides a constant interface to the different deployment platforms of Contrast.	The platforms package provides a constant interface to the different deployment platforms of Contrast.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL