Skip to content

Commit

Permalink
Add kms arguments in enclave_build
Browse files Browse the repository at this point in the history
  • Loading branch information
@pro-vlad
pro-vlad committed May 12, 2023
1 parent 99ad930 commit 979e106
Showing 1 changed file with 33 additions and 7 deletions.
40 changes: 33 additions & 7 deletions enclave_build/src/main.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -87,6 +87,18 @@ fn main() {
.help("Specify the path to the private-key")
.takes_value(true),
)
.arg(
Arg::with_name("kms-key-arn")
.long("kms-key-arn")
.help("Specify ARN of the KMS key")
.takes_value(true),
)
.arg(
Arg::with_name("kms-key-region")
.long("kms-key-region")
.help("Specify region in which the KMS key resides")
.takes_value(true),
)
.arg(
Arg::with_name("build")
.short('b')
Expand Down Expand Up @@ -134,12 +146,26 @@ fn main() {
let signing_certificate = matches
.value_of("signing_certificate")
.map(|val| val.to_string());
let private_key = Some(SigningKey::LocalKey {
path: matches
.value_of("private_certificate")
.map(|val| val.to_string())
.unwrap(),
});
let kms_key_arn = matches.value_of("kms-key-arn");
let kms_key_region = matches.value_of("kms-key-region");
let private_key_path = matches
.value_of("private_key")
.map(|val| val.to_string());

let signing_key = match (kms_key_arn, private_key_path) {
(None, Some(key_path)) => {
Some(SigningKey::LocalKey{
path: key_path
})
},
(Some(kms_arn), None) => {
Some(SigningKey::KmsKey{
arn: kms_arn.to_string(),
region: kms_key_region.unwrap().to_string()
})
},
_ => None
};
let img_name = matches.value_of("image_name").map(|val| val.to_string());
let img_version = matches.value_of("image_version").map(|val| val.to_string());
let metadata = matches.value_of("metadata").map(|val| val.to_string());
Expand All @@ -161,7 +187,7 @@ fn main() {
&mut output,
".".to_string(),
&signing_certificate,
&private_key,
&signing_key,
img_name,
img_version,
metadata,
Expand Down

0 comments on commit 979e106

Please sign in to comment.