Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-05-07 16:55:15 -04:00
Code Issues Projects Releases Packages Wiki Activity

Revert "attestation: add SNP-based attestation for aws-sev-snp (#1916)" (#1957)

Browse source 
This reverts commit c7d12055d1.
This commit is contained in:
Otto Bittner 2023-06-22 17:08:44 +02:00 committed by GitHub
parent 487fa1e397
commit 7388240943
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
23 changed files with 239 additions and 646 deletions
Download patch file Download diff file Expand all files Collapse all files

4
cli/internal/cloudcmd/create.go
View file

@ -144,9 +144,7 @@ func (c *Creator) createAWS(ctx context.Context, cl terraformClient, opts Create
IAMProfileControlPlane: opts.Config.Provider.AWS.IAMProfileControlPlane,
IAMProfileWorkerNodes: opts.Config.Provider.AWS.IAMProfileWorkerNodes,
Debug: opts.Config.IsDebugCluster(),
// We always want to use SNP machines. If the users decides to use NitroTPM attestation,
// they will at least have runtime encryption.
EnableSNP: true,
EnableSNP: opts.Config.GetAttestationConfig().GetVariant().Equal(variant.AWSSEVSNP{}),
}
if err := cl.PrepareWorkspace(path.Join("terraform", strings.ToLower(cloudprovider.AWS.String())), &vars); err != nil {