config: add attestation variant (#1413)

* Add attestation type to config (optional for now) * Get attestation variant from config in CLI * Set attestation variant for Constellation services in helm deployments * Remove AzureCVM variable from helm deployments --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2025-08-05 21:44:15 -04:00 · 2023-03-14 11:46:27 +01:00 · 2023-03-14 11:46:27 +01:00 · 6ea5588bdc
commit 6ea5588bdc
parent 8679988b6c
44 changed files with 379 additions and 383 deletions
--- a/cli/internal/cmd/configgenerate.go
+++ b/cli/internal/cmd/configgenerate.go
@ -15,6 +15,7 @@ import (
 	"github.com/edgelesssys/constellation/v2/internal/config"
 	"github.com/edgelesssys/constellation/v2/internal/constants"
 	"github.com/edgelesssys/constellation/v2/internal/file"
+	"github.com/edgelesssys/constellation/v2/internal/oid"
 	"github.com/edgelesssys/constellation/v2/internal/versions"
 	"github.com/siderolabs/talos/pkg/machinery/config/encoder"
 	"github.com/spf13/afero"
@ -105,6 +106,18 @@ func createConfig(provider cloudprovider.Provider) *config.Config {
 		conf.StateDiskSizeGB = 10
 	}

+	// TODO(AB#2976): Replace hardcoded values with user input
+	switch provider {
+	case cloudprovider.AWS:
+		conf.AttestationVariant = oid.AWSNitroTPM{}.String()
+	case cloudprovider.Azure:
+		conf.AttestationVariant = oid.AzureSEVSNP{}.String()
+	case cloudprovider.GCP:
+		conf.AttestationVariant = oid.GCPSEVES{}.String()
+	case cloudprovider.QEMU:
+		conf.AttestationVariant = oid.QEMUVTPM{}.String()
+	}
+
 	return conf
 }