Merge pull request #103 from matter-labs/aesmd_restart

fix: only restart `aesmd` if `aesm.socket` is not readable

packages/container-self-attestation-test-sgx-azure/Dockerfile

@@ -20,4 +20,4 @@ EXPOSE 8443
 
 ENTRYPOINT ["/bin/sh", "-c"]
 ENV SSL_CERT_FILE=/etc/ssl/certs/ca-bundle.crt
-CMD [ "restart-aesmd >&2; exec gramine-sgx tee-self-attestation-test" ]
+CMD [ "[[ -r /var/run/aesmd/aesm.socket ]] || restart-aesmd >&2; exec gramine-sgx tee-self-attestation-test" ]

packages/container-self-attestation-test-sgx-dcap/Dockerfile

@@ -22,4 +22,4 @@ EXPOSE 8443
 
 ENTRYPOINT ["/bin/sh", "-c"]
 ENV SSL_CERT_FILE=/etc/ssl/certs/ca-bundle.crt
-CMD [ "restart-aesmd >&2; exec gramine-sgx tee-self-attestation-test" ]
+CMD [ "[[ -r /var/run/aesmd/aesm.socket ]] || restart-aesmd >&2; exec gramine-sgx tee-self-attestation-test" ]

packages/container-vault-admin-sgx-azure/Dockerfile

@@ -22,4 +22,4 @@ EXPOSE 8443
 
 ENTRYPOINT ["/bin/sh", "-c"]
 ENV SSL_CERT_FILE=/etc/ssl/certs/ca-bundle.crt
-CMD [ "echo tee-vault-admin in SGX mode starting; restart-aesmd ; exec gramine-sgx tee-vault-admin" ]
+CMD [ "echo tee-vault-admin in SGX mode starting; [[ -r /var/run/aesmd/aesm.socket ]] || restart-aesmd ; exec gramine-sgx tee-vault-admin" ]

packages/container-vault-sgx-azure/Dockerfile

@@ -22,4 +22,4 @@ VOLUME /opt/vault/data
 
 ENTRYPOINT ["/bin/sh", "-c"]
 ENV SSL_CERT_FILE=/etc/ssl/certs/ca-bundle.crt
-CMD [ "echo vault in SGX mode starting; restart-aesmd ; exec gramine-sgx vault" ]
+CMD [ "echo vault in SGX mode starting; [[ -r /var/run/aesmd/aesm.socket ]] || restart-aesmd ; exec gramine-sgx vault" ]

packages/container-vault-unseal-sgx-azure/Dockerfile

@@ -22,4 +22,4 @@ EXPOSE 8443
 
 ENTRYPOINT ["/bin/sh", "-c"]
 ENV SSL_CERT_FILE=/etc/ssl/certs/ca-bundle.crt
-CMD [ "echo tee-vault-unseal in SGX mode starting; restart-aesmd ; exec gramine-sgx tee-vault-unseal" ]
+CMD [ "echo tee-vault-unseal in SGX mode starting; [[ -r /var/run/aesmd/aesm.socket ]] || restart-aesmd ; exec gramine-sgx tee-vault-unseal" ]