Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-04-19 15:05:57 -04:00
Code Issues Packages Projects Releases Wiki Activity
3,971 Commits 141 Branches 53 Tags
Commit Graph

958 Commits

Author SHA1 Message Date
edgelessci
9603dcd09e attestation: hardcode measurements for v2.16.4 2024-05-14 13:30:56 +00:00
edgelessci
3787dec609 deps: update versions to v2.16.4 2024-05-14 12:55:06 +00:00
3u13r
29dc8ed0af helm: disable cilium ipmasq agent when in conformance mode (#3062) 2024-05-14 13:47:41 +02:00
Moritz Sanft
eadbbc1b36 snp: don't print warning if no ASK is present (#3048) 
Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>
 2024-05-13 20:47:36 +02:00
Daniel Weiße
ec87c2ee06 snp: ensure we never use ARK supplied by Issuer (#3025) 2024-05-13 20:47:24 +02:00
Daniel Weiße
d9dec5caa6 kubecmd: retry any k8s errors in CLI and Terraform (#3028) 
* Retry any k8s errors in CLI and Terraform
* Use structured logging in `kubecmd` package

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-05-13 19:48:48 +02:00
miampf
75ceeb2de8 logging: unify debug log message format (#2997) 2024-05-13 19:48:40 +02:00
Daniel Weiße
c6011540c7 attestation: dont set a default for TDX MRSEAM (#3038) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-05-13 19:42:29 +02:00
edgelessci
ea5cdfb247 attestation: hardcode measurements for v2.16.3 2024-04-11 08:29:03 +00:00
edgelessci
b34d9dc9d4 deps: update versions to v2.16.3 2024-04-11 07:47:14 +00:00
Markus Rudy
c64068557c helm: unbreak helm test after Cilium version bump (#3022) 2024-04-11 09:44:45 +02:00
Markus Rudy
4db8b2c272 Merge pull request from GHSA-g8fc-vrcg-8vjg 
* helm: firewall pods

* helm: bump cilium chart version

---------

Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
 2024-04-11 09:44:45 +02:00
edgelessci
d2e1880f3e attestation: hardcode measurements for v2.16.2 2024-04-05 13:54:57 +00:00
edgelessci
0f2f1d3fd2 deps: update versions to v2.16.2 2024-04-05 13:24:03 +00:00
Markus Rudy
0a09b02e71
helm: retry uninstall manually if atomic install failed (#2984) 2024-04-05 15:21:53 +02:00
edgelessci
dec19769c5 attestation: hardcode measurements for v2.16.1 2024-03-11 18:10:09 +00:00
edgelessci
7af3fd7fda deps: update versions to v2.16.1 2024-03-11 17:38:39 +00:00
Malte Poll
98d5998057 openstack: move credentials to instance user data 2024-03-11 18:18:54 +01:00
Malte Poll
6181381c66 openstack: read credentials from clouds.yaml 2024-03-11 18:18:13 +01:00
Malte Poll
d6d9ef437c terraform-provider: Add support for STACKIT / OpenStack 2024-03-11 18:17:57 +01:00
Malte Poll
d1a22a725e openstack: vendor clouds.yaml Go type definitions from gophercloud v2 beta 2024-03-11 18:17:45 +01:00
Malte Poll
e50e97dff6 openstack: rename client type 2024-03-11 18:17:39 +01:00
Daniel Weiße
a546648074 cli: retry auth handshake deadline exceeded errors in CLI and Terraform (#2976) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-03-11 18:17:07 +01:00
Malte Poll
07db825756 openstack: improve error message on IMDS failures 2024-03-11 18:16:09 +01:00
Malte Poll
a3c5f3d445 imagefetcher: allow any marketplace image for OpenStack 2024-03-11 18:15:57 +01:00
Malte Poll
643b1ed4ac deps: update protobuf to v1.33.0 2024-03-11 18:15:18 +01:00
Malte Poll
e893b03eda cli: correct measurements in config generate stackit 2024-03-11 18:14:55 +01:00
Malte Poll
e7897a7468 misc: skip message about community license with marketplace image 2024-03-11 18:14:37 +01:00
Malte Poll
3d7b8c3596 cli: add STACKIT to constellation config instance-types 2024-03-11 18:14:26 +01:00
edgelessci
839543dcc1 attestation: hardcode measurements for v2.16.0 2024-02-29 09:29:24 +00:00
edgelessci
228f168b0f deps: update versions to v2.16.0 2024-02-29 08:59:30 +00:00
Malte Poll
3ce10eb00f terraform: allow STACKIT / OpenStack instance type to be UUID or name 2024-02-28 15:48:53 +01:00
edgelessci
79aaa77b6b
image: update measurements and image version (#2950) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-02-28 10:02:33 +01:00
edgelessci
b2ab5869b3
image: update measurements and image version (#2943) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-02-23 09:33:12 +01:00
3u13r
2a61861a1c
stackit: add k8s api load balancer (#2925) 2024-02-22 17:39:34 +01:00
renovate[bot]
62acec17f6
deps: update Constellation containers (#2921) 
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
 2024-02-22 14:04:42 +01:00
Malte Poll
00d39ff7fa helm: update edgelesssys cinder-csi-plugin 2024-02-22 12:43:04 +01:00
Malte Poll
31f65fb486 openstack: find node CIDR with multiple subnets 2024-02-22 12:43:04 +01:00
Malte Poll
d8185fdafb helm: use patched yawol with support for subnet choice 
Constellation requires a CIDR that only Kubernetes nodes live in.
This is needed for cilium encryption.
To make yawol LBs work, they need to be placed in a different subnet
with their own CIDR.
This patched version supports that.
 2024-02-22 12:43:04 +01:00
Malte Poll
1e987f6a85 terraform: add subnet for OpenStack LBs 2024-02-22 12:43:04 +01:00
Malte Poll
9d164de18b
helm: avoid waiting for non-essential services (#2939) 
In our e2e tests, we see a lot of "etcd-leader changed" errors
while deploying non-essential helm charts.
If this transient error occurs, helm gets into a broken state
where it cannot uninstall cleanly and thus any retry attempts fail.
By not waiting for the installation of helm charts to succeed,
we can avoid making most of the kubernetes API calls while
control-plane nodes are joining.
This makes "constellation apply" faster and more resilient.
 2024-02-22 12:18:55 +01:00
Malte Poll
522f2858c6 proto: update generated protobuf sources 2024-02-21 18:40:16 +01:00
Malte Poll
8541365341 sigstore: replace use of deprecated module go-tuf 2024-02-21 18:40:16 +01:00
Malte Poll
65903459a0 chore: fix unused parameter lint in new golangcilint version 2024-02-21 17:54:07 +01:00
renovate[bot]
cdd80a4f3f
deps: update dependency containernetworking/plugins to v1.4.0 (#2896) 
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
 2024-02-21 17:42:48 +01:00
miampf
96c5980651
cli: collect debug logs in file (#2906) 2024-02-21 15:39:12 +00:00
Malte Poll
59faa2b692 attestation: add hardcoded OpenStack enterprise measurements 2024-02-21 13:31:32 +01:00
katexochen
70ff097e12 image: update measurements and image version 2024-02-21 08:49:20 +01:00
Malte Poll
a4d25646f5 deps: update to bazel 7 2024-02-20 12:50:13 +01:00
Malte Poll
75f16ce87b image: upload OpenStack images to OpenStack 2024-02-19 18:16:45 +01:00