config: add separate option for handling attestation parameters (#1623)

* Add attestation options to config * Add join-config migration path for clusters with old measurement format * Always create MAA provider for Azure SNP clusters * Remove confidential VM option from provider in favor of attestation options * cli: add config migrate command to handle config migration (#1678) --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2025-08-01 03:26:08 -04:00 · 2023-05-03 11:11:53 +02:00 · 2023-05-03 11:11:53 +02:00 · d7a2ddd939
commit d7a2ddd939
parent 6027b066e5
74 changed files with 1339 additions and 1282 deletions
--- a/cli/internal/helm/testdata/QEMU/constellation-services/charts/join-service/templates/configmap.yaml
+++ b/cli/internal/helm/testdata/QEMU/constellation-services/charts/join-service/templates/configmap.yaml
@ -4,6 +4,6 @@ metadata:
  name: join-config
  namespace: testNamespace
 data:
-  measurements: "{\"1\":{\"expected\":\"aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\",\"warnOnly\":false}}"
+  attestationConfig: "{\"measurements\":{\"1\":{\"expected\":\"aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\",\"warnOnly\":false}}}"
 binaryData:
  measurementSalt: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
--- a/cli/internal/helm/testdata/QEMU/constellation-services/charts/key-service/templates/daemonset.yaml
+++ b/cli/internal/helm/testdata/QEMU/constellation-services/charts/key-service/templates/daemonset.yaml
@ -47,11 +47,6 @@ spec:
        - name: config
          projected:
            sources:
-              - configMap:
-                  items:
-                    - key: measurements
-                      path: measurements
-                  name: join-config
              - secret:
                  items:
                    - key: mastersecret