Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-01-20 20:31:38 -05:00
Code Issues Packages Projects Releases Wiki Activity
4,365 Commits 136 Branches 49 Tags 94 MiB
david-docs-review
Commit Graph

4365 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david-crypto
fec81e01ff . 2025-01-02 08:54:01 +00:00
david-crypto
aafb9b7463 clean-up 2024-12-04 09:16:23 +01:00
david-crypto
9fdba69ca2 revision iteration 2024-11-28 16:28:46 +01:00
david-crypto
1a2ed9eff2 restructured a small part in overview.md for clearity. 2024-11-25 09:47:58 +01:00
david-crypto
9e1a38e44d Finalized architecture overview 2024-11-22 15:00:46 +01:00
david-crypto
7bf46e7608 intro page revised 2024-10-29 08:14:04 +01:00
david-crypto
d070842f12 revision cntd 2024-10-28 08:20:28 +01:00
david-crypto
b47bbec534 further changes 2024-10-25 09:30:58 +02:00
david-crypto
7ad885cea0 restructuring cntd 2024-10-24 14:17:35 +02:00
david-crypto
2dcd37e0b6 revised structure, added intro, started revising texts 2024-10-23 17:51:03 +02:00
david-crypto
031c0cc9d6 restructured archticeture docs 2024-10-23 12:52:40 +02:00
securisk-dk
bf2d497c8c init david-docs-review branch 2024-10-02 11:00:32 +02:00
Felix Schuster
622406de2c
Add overview of security protocols (#3376) 2024-10-02 10:22:27 +02:00
edgelessci
097879a9ca
image: update measurements and image version (#3384) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-10-02 09:32:22 +02:00
Moritz Sanft
39e6059607
ci: fix matrix runner spec (#3380) 2024-09-27 16:07:38 +02:00
Moritz Sanft
648e9370b6
treewide: v2.18.0 post-release (#3381) 2024-09-27 09:43:47 +02:00
edgelessci
692cb3fa00
docs: add release v2.18.0 (#3378) 
Co-authored-by: msanft <58110325+msanft@users.noreply.github.com>
 2024-09-27 09:08:18 +02:00
edgelessci
2f67eb3f54
image: update measurements and image version (#3379) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-27 08:10:42 +02:00
3u13r
882d602524
openstack: set region in cluster cloud client (#3375) 2024-09-26 11:08:06 +02:00
edgelessci
d65987cb15
image: update measurements and image version (#3377) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-25 08:41:47 +02:00
Daniel Weiße
c0a59a18d5
ci: update e2e mini default region and always return resource group name (#3373) 
* Choose resource group name outside of Terraform to catch issues during apply
* Run test in West Europe

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-09-25 08:37:27 +02:00
renovate[bot]
068e68d478
deps: update bazel (modules) (#3370) 
* deps: update bazel (modules)

* deps: tidy all modules

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com>
 2024-09-24 09:52:45 +02:00
edgelessci
ea9d5122f3
image: update locked rpms (#3372) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-22 11:36:40 +02:00
edgelessci
6fc051cf98
image: update measurements and image version (#3371) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-20 08:21:52 +02:00
Markus Rudy
1ca8d4f977
ci: remove obsolete python dep (#3369) 2024-09-19 14:16:51 +02:00
renovate[bot]
681393ef28
deps: update distroless_static Docker digest to b033683 (#3367) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-19 13:23:09 +02:00
Markus Rudy
850b460002
helm: revert parts of CoreDNS Helm chart packaging (#3366) 
* Revert "helm: fix kubeadm bugs caused by CoreDNS installation (#3353)"

This reverts commit 8ef5ea2efe.

* Revert "helm: manage CoreDNS addon as Helm chart (#3236)"

This reverts commit 97c77e2a78.

* upgrade-agent: ignore CoreDNS preflight errors
 2024-09-19 10:55:21 +02:00
Daniel Weiße
89eb8ca6ae
ci: check if CLI version supports --subscriptionID flag before using it (#3364) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-09-18 10:04:29 +02:00
Moritz Sanft
effb086cd3
operator: use GCP REST API for instance templates (#3361) 2024-09-18 08:57:14 +02:00
renovate[bot]
dda6d5c16c
deps: update fedora:40 Docker digest to d0207db (#3363) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-18 08:49:43 +02:00
edgelessci
3a40e79779
image: update measurements and image version (#3362) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-18 08:35:33 +02:00
renovate[bot]
9c13603756
deps: update distroless_static Docker digest to 95eb83a (#3347) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-18 08:15:50 +02:00
Daniel Weiße
7bb6ad6cc2
docs: fix broken links (#3359) 
* Update cosign installation guide link
* Update cosign overview link
* Update cosign sbom link

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-09-17 15:33:08 +02:00
Moritz Sanft
d2cbc0adef
terraform: enable serial console by default (#3360) 2024-09-17 15:01:33 +02:00
3u13r
1f887c7868
image: re-enable autologin for debug and console images (#3355) 
* image: remove autologin via mkosi

In mkosi v24 --autologin no longer works for ttyS consoles. Since the CSPs use those exclusively for their serial consoles, we need to replace this with another solution (see next commit)

* image: add getty systemd unit for debug images

This replaces the mkosi --autologin solution with a getty systemd unit for ttyS0.
Note that both console and debug images hace their consoles enabled.
 2024-09-17 14:07:28 +02:00
renovate[bot]
a295ecaffb
cli: add --subscriptionID flag for iam create azure command (#3328) 
* deps: update Terraform azurerm to v4
* Set Azure subscription ID when applying Terraform files
* Upgrade azurerm to v4.1.0
* Mark subscriptionID flag as not required
* deps: tidy all modules

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-17 12:30:22 +02:00
edgelessci
c6a9c2574b
image: update locked rpms (#3356) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-15 16:49:40 +02:00
edgelessci
994c4523b0
image: update measurements and image version (#3354) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-13 10:30:55 +02:00
Markus Rudy
8ef5ea2efe
helm: fix kubeadm bugs caused by CoreDNS installation (#3353) 
* helm: rename CoreDNS configmap

* upgrade-agent: ignore CoreDNS preflight errors

* fixup! helm: rename CoreDNS configmap
 2024-09-13 09:47:33 +02:00
Markus Rudy
e077eaf02c
e2e: remove immediate node status printing (#3351) 2024-09-12 22:44:38 +02:00
Moritz Sanft
5f5df1fc36
terraform-provider-constellation: set correct cc_technology in GCP example (#3352) 2024-09-12 13:31:21 +02:00
edgelessci
7e9c316201
image: update measurements and image version (#3350) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-11 08:30:27 +02:00
Markus Rudy
98f359e039
helm: allow multiple default routes (#3344) 2024-09-10 13:17:26 +02:00
renovate[bot]
3e37819fe7
deps: update cloud-provider-gcp (K8s version constrained) (#3320) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-10 13:16:51 +02:00
renovate[bot]
665cff0071
deps: update K8s constrained AWS versions (#3319) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-10 11:41:44 +02:00
renovate[bot]
282fd315d2
deps: update K8s constrained Azure versions (#3346) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-10 11:39:05 +02:00
Moritz Sanft
fe2fd0a2da
treewide: update Go toolchain to 1.22.7 (#3343) 2024-09-09 12:45:48 +02:00
edgelessci
0aeda78089
image: update locked rpms (#3341) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-09 11:19:05 +02:00
Moritz Sanft
f7c2392be2
image: update mkosi to 24.3 (#3342) 
* flake: format

* image: update mkosi to 24.3

This updates mkosi to a next-version of v24.3, which is now available in nixpkgs. This removes the non-hermetic `uidmap` dependency, which is a great advantage. It will also be less of an effort to upgrade to v25 going forward.
Changes required are keeping `/var/cache` around (which is reproducible for our images, so no problem), as mkosi needs files from it in the build process. mkosi now additionally requires an explicit option to fetch the signing keys for the package repositories from the internet. A hack was required to satisfy the Bazel package, which should probably be solved properly at some point.
 2024-09-09 11:18:51 +02:00
renovate[bot]
5720fcc330
deps: update ubuntu:22.04 Docker digest to adbb901 (#3321) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-09 08:35:43 +02:00