Vagrantfile

# -*- mode: ruby -*-
# vi: set ft=ruby :

require 'getoptlong'
require 'yaml'

opts = GetoptLong.new(
  [ '--instances', GetoptLong::OPTIONAL_ARGUMENT ],
  [ '--repo', GetoptLong::OPTIONAL_ARGUMENT ],
  [ '--cpus', GetoptLong::OPTIONAL_ARGUMENT ],
  [ '--memory', GetoptLong::OPTIONAL_ARGUMENT ],
  [ '--verbose', GetoptLong::NO_ARGUMENT ],
  [ '--qualityoflife', GetoptLong::NO_ARGUMENT ]
)

config_file = File.expand_path(File.join(File.dirname(__FILE__), 'vagrant_variables.yml'))

settings={}
if File.exist?(config_file)
  settings = YAML.load_file(config_file)
end

# Use defaults defined in vagrant variables file, otherwise set defaults.
instances = settings['instances'] ? settings['instances'] : 1
cpus      = settings['cpus']      ? settings['cpus']      : 2
memory    = settings['memory']    ? settings['memory']    : 2048
repo      = settings['repo']      ? settings['repo']      : ''
verbose   = settings['verbose']   ? settings['verbose']   : false
qualityoflife   = settings['qualityoflife']   ? settings['qualityoflife']   : false

opts.ordering=(GetoptLong::REQUIRE_ORDER)

# Command line options take precedence i.e. override any defaults if command
# line options are provided.
opts.each do |opt, arg|
  case opt
    when '--instances'
      instances = arg.to_i
    when '--repo'
      repo = arg
    when '--cpus'
      cpus = arg.to_i
    when '--memory'
      memory = arg.to_i
    when '--verbose'
      verbose = true
    when '--qualityoflife'
      qualityoflife = true
  end
end

Vagrant.configure("2") do |config|
  (1..instances).each do |i|
    config.vm.define "keylime-fedora#{i}" do |keylime|
      keylime.vm.box = "fedora/35-cloud-base"
      # Should you require machines to share a private network
      # Note, you will need to create the network first within
      # your provider (VirtualBox / Libvirt etc)
      # keylime.vm.network :private_network, ip: "10.0.0.#{i}1"

      # Uncomment the following to forward ports on the VM and
      # allow access to Keylime components from the host machine.
      keylime.vm.network "forwarded_port", guest: 443, host: "844#{i}"
      # Forward Cloud Verifier listen port:
      #keylime.vm.network "forwarded_port", guest: 8881, host: "8881"
      # Forward Cloud Verifier revocation port:
      #keylime.vm.network "forwarded_port", guest: 8892, host: "8892"
      # Forward registrar listen port:
      #keylime.vm.network "forwarded_port", guest: 8890, host: "8890"
      # Forward registrar TLS listen port:
      #keylime.vm.network "forwarded_port", guest: 8891, host: "8891"
      # Forward agent listen port:
      #keylime.vm.network "forwarded_port", guest: 9002, host: "9002"
      if instances == 1
        hostname = "keylime-fedora"
      else
        hostname = "keylime-fedora#{i}"
      end
      keylime.vm.hostname = "#{hostname}"
      if defined? (repo)
        keylime.vm.synced_folder "#{repo}", "/root/keylime-dev", type: "sshfs"
      end
      keylime.vm.provider "virtualbox" do |v|
        v.memory = "#{memory}"
        v.cpus = "#{cpus}"
        v.customize ["modifyvm", :id, "--audio", "none"]
      end
      keylime.vm.provider "libvirt" do |vb|
        vb.random :model => 'random'
        vb.memory = "#{memory}"
        vb.cpus = "#{cpus}"
      end
      keylime.vm.provision "ansible_local" do |ansible|
          ansible.verbose = "v"
          ansible.playbook = "playbook.yml"
          ansible.extra_vars = {
            ansible_python_interpreter:"/usr/bin/python3",
          }
          if defined? (verbose) and verbose == true
            ansible.verbose = true
          end
      end
      if defined? (qualityoflife) and qualityoflife == true
        keylime.vm.provision "ansible_local" do |ansible|
            ansible.verbose = "v"
            ansible.playbook = "quality_of_life.yml"
            if defined? (verbose) and verbose == true
              ansible.verbose = true
            end
        end
      end
      keylime.vm.provision :shell, inline: "tpm2_startup -c && systemctl restart ima_emulator.service", run: "always"
    end
  end
end