From 3f90e4f80bdbd1fdc25029ff04623ab1eef28707 Mon Sep 17 00:00:00 2001
From: Harald Hoyer <harald@matterlabs.dev>
Date: Fri, 21 Mar 2025 13:11:23 +0100
Subject: [PATCH] feat(tdx_google): add iproute2 and vector initialization wait

- Include iproute2 in the container path for required networking tools.
- Add a script to wait for vector to initialize before proceeding.
---
 packages/tdx_google/container.nix | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/packages/tdx_google/container.nix b/packages/tdx_google/container.nix
index 701e9f1..3e8d8a3 100644
--- a/packages/tdx_google/container.nix
+++ b/packages/tdx_google/container.nix
@@ -15,10 +15,19 @@
       User = "root";
       EnvironmentFile = "-/run/env/env";
     };
-    path = [ pkgs.docker pkgs.teepot.teepot.tdx_extend ];
+    path = [ pkgs.docker pkgs.teepot.teepot.tdx_extend pkgs.iproute2 ];
     script = ''
       set -eu -o pipefail
 
+      # wait for vector to initialize itself
+      for i in {1..30}; do
+        if [[ $(ss -H -t -l -n sport = 4318) ]]; then
+          break
+        fi
+        echo "Waiting for vector to initialize itself..." >&2
+        sleep 1
+      done
+
       DIGEST=''${CONTAINER_DIGEST#sha256:}
       echo "Measuring $DIGEST" >&2
       test -c /dev/tdx_guest && tdx-extend --digest "$DIGEST" --rtmr 3