Add version information and fix cloudbuild #455

jkl73 · 2024-05-22T20:41:20Z

gotpm cmd can now shows version info:

$ go-tpm-tools_linux_amd64_v1/go-tpm-tools -v
gotpm version 0.4.4, commit 2dca42d8bece8ce657cd972d4451e3ba803b8e96, built at 2024-05-22T20:46:34Z
- go-sev-guest version v0.3.1
- go-tdx-guest version v0.9.3

launcher will also show build commit in the welcome message.
update launcher cloudbuild to go1.21 to match its go.mod
add "sync" at the end of the preload.sh file to fix (hopefully) the empty files in OEM partition when building the image.

/usr/share/oem/confidential_space $ ls -althr
total 80M
drwxr-xr-x 4 root root 4.0K May 28 20:51 ..
-rwxr-xr-x 1 root root  55M May 28 20:51 confidential_space_experiments
-rwxr-xr-x 1 root root  26M May 28 20:51 cs_container_launcher
-rw-r--r-- 1 root root    0 May 28 20:51 container-runner.service
-rwxr-xr-x 1 root root    0 May 28 20:51 exit_script.sh
-rw-r--r-- 1 root root    0 May 28 20:51 fluent-bit-cs.conf
-rw-r--r-- 1 root root    0 May 28 20:51 system-stats-monitor-cs.json
-rw-r--r-- 1 root root    0 May 28 20:51 boot-disk-size-consistency-monitor-cs.json
-rw-r--r-- 1 root root    0 May 28 20:51 docker-monitor-cs.json
-rw-r--r-- 1 root root    0 May 28 20:51 kernel-monitor-cs.json
drwxr-xr-x 2 root root 4.0K May 28 20:51 .

jkl73 · 2024-05-22T20:59:07Z

/gcbrun

jkl73 · 2024-05-22T21:23:44Z

/gcbrun

jkl73 · 2024-05-22T21:29:03Z

/gcbrun

jkl73 · 2024-05-23T00:08:16Z

/gcbrun

jkl73 · 2024-05-23T01:50:26Z

/gcbrun

jkl73 · 2024-05-24T01:53:51Z

/gcbrun

jkl73 · 2024-05-24T18:10:24Z

/gcbrun

jkl73 · 2024-05-28T20:41:40Z

/gcbrun

jkl73 · 2024-05-29T18:17:28Z

/gcbrun

jkl73 · 2024-05-29T20:54:56Z

/gcbrun

alexmwu · 2024-05-29T22:02:28Z

cmd/gotpm/main.go


 	"github.com/google/go-tpm-tools/cmd"
 )

+// GoReleaser will populates those fields


how does it do this? I see https://pkg.go.dev/runtime/debug#ReadBuildInfo, does GoReleaser fill that out?

yes, by default these three will be populated https://goreleaser.com/cookbooks/using-main.version/

alexmwu · 2024-05-29T22:03:49Z

cmd/gotpm/main.go

+	version = "dev"
+	commit  = "none"
+	date    = "unknown"


How does goreleaser populate these fields?

when building the binary, using ldflags:
https://goreleaser.com/cookbooks/using-main.version/

consider adding a comment

alexmwu · 2024-05-29T22:06:23Z

launcher/image/preload.sh

@@ -128,6 +128,12 @@ main() {
         "Only 'debug' and 'hardened' are supported."
    exit 1
  fi
+
+  # make sure files are copied
+  sync


Why is syncing required? Should we only sync the copy directory?

So the symptom we saw in some image builds are files with 0 length in the OEM partition, I thought this might be because of files didn't copy through and the partition got umounted.

/usr/share/oem/confidential_space $ ls -althr total 80M drwxr-xr-x 4 root root 4.0K May 28 20:51 .. -rwxr-xr-x 1 root root 55M May 28 20:51 confidential_space_experiments -rwxr-xr-x 1 root root 26M May 28 20:51 cs_container_launcher -rw-r--r-- 1 root root 0 May 28 20:51 container-runner.service -rwxr-xr-x 1 root root 0 May 28 20:51 exit_script.sh -rw-r--r-- 1 root root 0 May 28 20:51 fluent-bit-cs.conf -rw-r--r-- 1 root root 0 May 28 20:51 system-stats-monitor-cs.json -rw-r--r-- 1 root root 0 May 28 20:51 boot-disk-size-consistency-monitor-cs.json -rw-r--r-- 1 root root 0 May 28 20:51 docker-monitor-cs.json -rw-r--r-- 1 root root 0 May 28 20:51 kernel-monitor-cs.json drwxr-xr-x 2 root root 4.0K May 28 20:51 .

Adding this to make sure all files are written to the disk.

I changed to sync the oem directory only

launcher/launcher/main.go

jkl73 · 2024-05-29T22:46:56Z

/gcbrun

alexmwu · 2024-05-29T23:51:47Z

cmd/gotpm/main.go

+	version = "dev"
+	commit  = "none"
+	date    = "unknown"


consider adding a comment

Upgrade launcher cloudbuild to golang 1.21 Fix cloudbuild with empty oem files

jkl73 force-pushed the showversion branch 2 times, most recently from 2dca42d to 9234966 Compare May 22, 2024 20:51

jkl73 force-pushed the showversion branch from 9234966 to b292df1 Compare May 22, 2024 21:21

jkl73 force-pushed the showversion branch from b292df1 to 58479f0 Compare May 22, 2024 21:28

jkl73 force-pushed the showversion branch from 58479f0 to cedecd7 Compare May 23, 2024 01:49

jkl73 force-pushed the showversion branch from cedecd7 to 0f38186 Compare May 24, 2024 01:49

jkl73 force-pushed the showversion branch from 0f38186 to e68ad33 Compare May 24, 2024 18:00

jkl73 force-pushed the showversion branch from e68ad33 to 0d1f083 Compare May 28, 2024 20:41

jkl73 force-pushed the showversion branch from 0d1f083 to 33ac95f Compare May 29, 2024 18:12

jkl73 force-pushed the showversion branch from 33ac95f to 9c754cd Compare May 29, 2024 20:53

jkl73 changed the title ~~Add version information to gotpm cmd and launcher~~ Add version information and fix cloudbuild May 29, 2024

jkl73 requested review from alexmwu and michael-pregman May 29, 2024 21:56

alexmwu reviewed May 29, 2024

View reviewed changes

jkl73 force-pushed the showversion branch from 9c754cd to b28a273 Compare May 29, 2024 22:43

alexmwu approved these changes May 29, 2024

View reviewed changes

cmd/gotpm/main.go

Comment on lines +14 to +17

version = "dev"

commit = "none"

date = "unknown"

Copy link

Contributor

alexmwu May 29, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

consider adding a comment

jkl73 force-pushed the showversion branch from b28a273 to ed92c28 Compare May 29, 2024 23:57

jkl73 merged commit 264c9b4 into google:main May 30, 2024
10 of 11 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add version information and fix cloudbuild #455

Add version information and fix cloudbuild #455

jkl73 commented May 22, 2024 •

edited

Loading

jkl73 commented May 22, 2024

jkl73 commented May 22, 2024

jkl73 commented May 22, 2024

jkl73 commented May 23, 2024

jkl73 commented May 23, 2024

jkl73 commented May 24, 2024

jkl73 commented May 24, 2024

jkl73 commented May 28, 2024

jkl73 commented May 29, 2024

jkl73 commented May 29, 2024

alexmwu May 29, 2024

jkl73 May 29, 2024

alexmwu May 29, 2024

jkl73 May 29, 2024

alexmwu May 29, 2024

alexmwu May 29, 2024

jkl73 May 29, 2024 •

edited

Loading

jkl73 May 29, 2024

jkl73 commented May 29, 2024

alexmwu May 29, 2024

Add version information and fix cloudbuild #455

Add version information and fix cloudbuild #455

Conversation

jkl73 commented May 22, 2024 • edited Loading

jkl73 commented May 22, 2024

jkl73 commented May 22, 2024

jkl73 commented May 22, 2024

jkl73 commented May 23, 2024

jkl73 commented May 23, 2024

jkl73 commented May 24, 2024

jkl73 commented May 24, 2024

jkl73 commented May 28, 2024

jkl73 commented May 29, 2024

jkl73 commented May 29, 2024

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

jkl73 May 29, 2024 • edited Loading

Choose a reason for hiding this comment

Choose a reason for hiding this comment

jkl73 commented May 29, 2024

Choose a reason for hiding this comment

jkl73 commented May 22, 2024 •

edited

Loading

jkl73 May 29, 2024 •

edited

Loading