cli: remove helm management from join-config (#2251)

* Replace UpdateAttestationConfig with ApplyJoinConfig * Dont set up join-config over Helm, it is now only managed by our CLI directly during init and upgrade * Remove measurementSalt and attestationConfig parsing from helm, they were only needed for the JoinConfig * Add migration step to remove join-config from Helm management * Update attestation config trouble shooting tip --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2025-08-12 16:55:31 -04:00 · 2023-08-23 08:14:39 +02:00 · 2023-08-23 08:14:39 +02:00 · 053aa60e47
commit 053aa60e47
parent c42e81bf23
21 changed files with 326 additions and 196 deletions
--- a/cli/internal/helm/overrides.go
+++ b/cli/internal/helm/overrides.go
@ -54,17 +54,11 @@ func extraCiliumValues(provider cloudprovider.Provider, conformanceMode bool, ou
 // extraConstellationServicesValues extends the given values map by some values depending on user input.
 // Values set inside this function are only applied during init, not during upgrade.
 func extraConstellationServicesValues(
-	cfg *config.Config, masterSecret uri.MasterSecret, measurementSalt []byte, uid, serviceAccURI string, output terraform.ApplyOutput,
+	cfg *config.Config, masterSecret uri.MasterSecret, uid, serviceAccURI string, output terraform.ApplyOutput,
 ) (map[string]any, error) {
-	attestationConfigJSON, err := json.Marshal(cfg.GetAttestationConfig())
-	if err != nil {
-		return nil, fmt.Errorf("marshalling measurements: %w", err)
-	}
 	extraVals := map[string]any{}
 	extraVals["join-service"] = map[string]any{
-		"measurementSalt":    base64.StdEncoding.EncodeToString(measurementSalt),
 		"attestationVariant": cfg.GetAttestationConfig().GetVariant().String(),
-		"attestationConfig":  string(attestationConfigJSON),
 	}
 	extraVals["verification-service"] = map[string]any{
 		"attestationVariant": cfg.GetAttestationConfig().GetVariant().String(),