From b706f02408be8306bcc59a57da19e075a59f81d1 Mon Sep 17 00:00:00 2001 From: Svetlin Zamfirov Date: Mon, 30 Mar 2020 16:10:51 +0200 Subject: [PATCH] Fixing auto-generated code errors --- builder/googlecompute/config.go | 25 +++++++++---------- .../googlecompute/Config-not-required.mdx | 15 +++++++++++ 2 files changed, 27 insertions(+), 13 deletions(-) diff --git a/builder/googlecompute/config.go b/builder/googlecompute/config.go index f47c68d9d..abe8e4531 100644 --- a/builder/googlecompute/config.go +++ b/builder/googlecompute/config.go @@ -57,21 +57,20 @@ type Config struct { // Type of disk used to back your instance, like pd-ssd or pd-standard. // Defaults to pd-standard. DiskType string `mapstructure:"disk_type" required:"false"` - // Shielded VM offers verifiable integrity of your Compute Engine VM instances, - // so you can be confident your instances haven't been compromised by boot- - // or kernel-level malware or rootkits. Shielded VM's verifiable integrity - // is achieved through the use of: - // * Secure Boot - helps ensure that the system only runs authentic software - // by verifying the digital signature of all boot components, and halting - // the boot process if signature verification fails. + // Create a Shielded VM image with Secure Boot enabled. It helps ensure that + // the system only runs authentic software by verifying the digital signature + // of all boot components, and halting the boot process if signature verification + // fails. [Details](https://cloud.google.com/security/shielded-cloud/shielded-vm) EnableSecureBoot bool `mapstructure:"enable_secure_boot" required:"false"` - // * virtual trusted platform module (vTPM)-enabled Measured Boot - A vTPM - // is a virtualized trusted platform module, which is a specialized computer - // chip you can use to protect objects, like keys and certificates, that - // you use to authenticate access to your system. + // Create a Shielded VM image with virtual trusted platform module + // Measured Boot enabled. A vTPM is a virtualized trusted platform module, + // which is a specialized computer chip you can use to protect objects, + // like keys and certificates, that you use to authenticate access to your + // system. [Details](https://cloud.google.com/security/shielded-cloud/shielded-vm) EnableVtpm bool `mapstructure:"enable_vtpm" required:"false"` - // * Integrity monitoring - Integrity monitoring helps you understand and - // make decisions about the state of your VM instances. + // Integrity monitoring helps you understand and make decisions about the + // state of your VM instances. Note: integrity monitoring relies on having + // vTPM enabled. [Details](https://cloud.google.com/security/shielded-cloud/shielded-vm) EnableIntegrityMonitoring bool `mapstructure:"enable_integrity_monitoring" required:"false"` // The unique name of the resulting image. Defaults to // `packer-{{timestamp}}`. diff --git a/website/pages/partials/builder/googlecompute/Config-not-required.mdx b/website/pages/partials/builder/googlecompute/Config-not-required.mdx index 4dcd04533..6a7204c1d 100644 --- a/website/pages/partials/builder/googlecompute/Config-not-required.mdx +++ b/website/pages/partials/builder/googlecompute/Config-not-required.mdx @@ -25,6 +25,21 @@ - `disk_type` (string) - Type of disk used to back your instance, like pd-ssd or pd-standard. Defaults to pd-standard. +- `enable_secure_boot` (bool) - Create a Shielded VM image with Secure Boot enabled. It helps ensure that + the system only runs authentic software by verifying the digital signature + of all boot components, and halting the boot process if signature verification + fails. [Details](https://cloud.google.com/security/shielded-cloud/shielded-vm) + +- `enable_vtpm` (bool) - Create a Shielded VM image with virtual trusted platform module + Measured Boot enabled. A vTPM is a virtualized trusted platform module, + which is a specialized computer chip you can use to protect objects, + like keys and certificates, that you use to authenticate access to your + system. [Details](https://cloud.google.com/security/shielded-cloud/shielded-vm) + +- `enable_integrity_monitoring` (bool) - Integrity monitoring helps you understand and make decisions about the + state of your VM instances. Note: integrity monitoring relies on having + vTPM enabled. [Details](https://cloud.google.com/security/shielded-cloud/shielded-vm) + - `image_name` (string) - The unique name of the resulting image. Defaults to `packer-{{timestamp}}`.