From 4b62ae6a08e93d0f931f90eb7e17816582155ba0b12510937bf0d96d5c9fb3ba Mon Sep 17 00:00:00 2001
From: Olaf Hering <ohering@suse.com>
Date: Tue, 23 Nov 2021 15:16:53 +0000
Subject: [PATCH] nitro-enclaves-vsock-proxy.service

OBS-URL: https://build.opensuse.org/package/show/Cloud:Tools/aws-nitro-enclaves-cli?expand=0&rev=5
---
 aws-nitro-enclaves-cli.patch | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/aws-nitro-enclaves-cli.patch b/aws-nitro-enclaves-cli.patch
index 4735d4e..8194378 100644
--- a/aws-nitro-enclaves-cli.patch
+++ b/aws-nitro-enclaves-cli.patch
@@ -37,3 +37,19 @@
      die_on(chdir("/rootfs") != 0, "chdir /rootfs");
      die_on(chroot("/rootfs") != 0, "chroot /rootfs");
  
+--- a/vsock_proxy/service/nitro-enclaves-vsock-proxy.service
++++ b/vsock_proxy/service/nitro-enclaves-vsock-proxy.service
+@@ -8,11 +8,12 @@ Type=simple
+ StandardOutput=journal
+ StandardError=journal
+ SyslogIdentifier=vsock-proxy
++Environment=VSOCK_PROXY_YAML=/etc/nitro_enclaves/vsock-proxy.yaml
+ ExecStart=/bin/bash -ce "TOKEN=$(curl --silent -X PUT \"http://169.254.169.254/latest/api/token\" -H \"X-aws-ec2-metadata-token-ttl-seconds: 21600\") ; \
+ 			REGION=$(curl --silent -H \"X-aws-ec2-metadata-token: $TOKEN\" http://169.254.169.254/latest/dynamic/instance-identity/document | jq -r .region) ; \
+ 			[ -z \"$REGION\" ] && REGION=$(curl --silent http://169.254.169.254/latest/dynamic/instance-identity/document | jq -r .region) ; \
+ 			exec /usr/bin/vsock-proxy 8000 kms.$${REGION}.amazonaws.com 443 \
+-                --config /etc/nitro_enclaves/vsock-proxy.yaml"
++                --config $VSOCK_PROXY_YAML"
+ Restart=always
+ TimeoutSec=0
+