2023-09-25 11:53:02 +02:00
|
|
|
# Attestation config API
|
|
|
|
|
|
|
|
|
|
## Azure SEV-SNP
|
|
|
|
|
The version numbers of SEV-SNP are updated as part of [e2e_verify](/.github/actions/e2e_verify/action.yml).
|
|
|
|
|
Because the version numbers are not publicly posted by Azure, we observe the versions on Azure VMs and assume a global rollout after a threshold time.
|
|
|
|
|
|
|
|
|
|
This estimate might make manual intervention necessary when a global rollout didn't happen.
|
|
|
|
|
|
|
|
|
|
### Manually delete a version
|
|
|
|
|
```
|
2025-02-24 08:58:57 +01:00
|
|
|
COSIGN_PASSWORD=$CPW COSIGN_PRIVATE_KEY="$(cat $PATH_TO_KEY)" AWS_ACCESS_KEY_ID=$ID AWS_ACCESS_KEY=$KEY bazel run //internal/api/attestationconfigapi/cli -- delete azure-sev-snp attestation-report 2025-01-18-09-15
|
2023-09-25 11:53:02 +02:00
|
|
|
```
|
|
|
|
|
|
|
|
|
|
### Manually upload a version
|
|
|
|
|
```
|
2025-02-24 08:58:57 +01:00
|
|
|
COSIGN_PASSWORD=$CPW COSIGN_PRIVATE_KEY="$(cat $PATH_TO_KEY)" AWS_ACCESS_KEY_ID=$ID AWS_ACCESS_KEY=$KEY bazel run //internal/api/attestationconfigapi/cli -- upload azure-sev-snp attestation-report 2025-01-18-09-15 --force
|
2023-09-25 11:53:02 +02:00
|
|
|
```
|
