search

hashicorp / packer-plugin-azure

Packer plugin for Azure Virtual Machine Image Builders
https://www.packer.io/docs/builders/azure
Mozilla Public License 2.0
51 stars 80 forks source link

Add Support for `NonPersistedTPM` Confidential VM Encryption Option #395

Open JenGoldstrich opened 8 months ago

JenGoldstrich commented 8 months ago

Follow up to https://github.com/hashicorp/packer-plugin-azure/pull/373

Confidential VMs can't be published to multiple regions currently due to the absence of NonPersistedTPM option in current galleryimageversion API

The following needs to be done to solve this issue

  1. Submit a PR to Pandora Azure SDK generation tool to add 2024-03-01 API version which contains the above option.

  2. Update code base to use new version of the SDK, this will require updating a few different clients.

  3. Add logic to parse NonPersistantTPM option, and set it in Confidential VM Encryption type setting, ensuring that it allows multi-region deploys

github-actions[bot] commented 8 months ago 
This issue has been synced to JIRA for planning.
JIRA ID: [HPR-1692](https://hashicorp.atlassian.net/browse/HPR-1692)
JenGoldstrich commented 8 months ago

that was the wrong API version actually oops, https://github.com/hashicorp/pandora/pull/4032 new PR for Pandora here

JenGoldstrich commented 7 months ago

So this feature is actually not in a stable API yet in the virtual machines API, so we have decided to hold off until it is published in a stable API and then we will add support for this feature.