ci: refactor image measurement generation (#1152)

* Merge measurements.image.json and measurements.json into latter.
* Use static (known) measurement values for the ones we cannot precompute.
Signed-off-by: Fabian Kammel <fk@edgeless.systems>

rfc/apis.md

@@ -31,7 +31,6 @@ There may be more API groups in the future (e.g. `cli`)
 - [`/constellation/v1/ref/<ref>/stream/<stream>/<version>/image/sbom.<format>.json`](image-api.md)
 - [`/constellation/v1/ref/<ref>/stream/<stream>/<version>/image/csp/<csp>/measurements.json`](image-api.md)
 - [`/constellation/v1/ref/<ref>/stream/<stream>/<version>/image/csp/<csp>/measurements.json.sig`](image-api.md)
-- [`/constellation/v1/ref/<ref>/stream/<stream>/<version>/image/csp/<csp>/measurements.image.json`](image-api.md)
 - [`/constellation/v1/ref/<ref>/stream/<stream>/<version>/image/csp/<csp>/image.raw`](image-api.md)
 
 ## API path identifiers  `ref`, `stream` and `version`

rfc/image-api.md

@@ -75,9 +75,8 @@ The following HTTP endpoints are available:
   - [`info.json` returns the lookup table for the given image version.](#image-lookup-table)
   - `sbom.<format>.json` contains SBOM files for the given image version. The exact formats and file names are TBD.
 - `GET /constellation/v1/ref/<REF>/stream/<STREAM>/<VERSION>/csp/<csp>/` contains files with measurements and signatures for the given image version and CSP.
-  - `measurements.json` contains the final measurements for the given image version and CSP.
+  - `measurements.json` contains the measurements for the given image version and CSP.
   - `measurements.json.sig` returns the signature of the measurements file.
-  - `measurements.image.json` returns the measurements generated statically from the image.
   - `image.raw` returns the raw image for the given image version and CSP.