dependabot[bot]
2e93b354e4
Bump actions/cache from 3.0.8 to 3.0.10
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.8 to 3.0.10.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](fd5de65bc8...56461b9eb0
)
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-05 02:02:48 -07:00
dependabot[bot]
fdd4425974
Bump actions/checkout from 3.0.2 to 3.1.0 ( #210 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](2541b1294d...93ea575cb5
)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-05 09:24:36 +02:00
Otto Bittner
0eb4a7831b
AB#2413: Add workflow for snp-report-verify
...
* Extend azure-snp-report-verify to also report fw SVNs.
* Add workflow based on azure-cvm to get maa-jwt and
verify it on a second runner.
2022-09-21 10:58:10 +02:00
Daniel Weiße
95873d6a15
Run macos builds as separate jobs ( #174 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-09-20 13:43:46 +02:00
katexochen
788cfd9bd9
Remove autoscaling from workflows
2022-09-20 13:41:23 +02:00
katexochen
7f2608c623
Update operator workflow
2022-09-20 13:41:23 +02:00
katexochen
7eb245d7ee
Checkout last instead of merge commit in workflows
2022-09-19 14:02:59 +02:00
katexochen
bce85324c2
Add go-tidy-check workflow
2022-09-19 14:02:59 +02:00
Nils Hanke
de1268ffb9
Pin cache action against specific commit
2022-09-19 04:49:55 -07:00
Nils Hanke
979164ab37
CI: Remove GOPRIVATE from actions
2022-09-19 01:09:56 -07:00
Nils Hanke
c8b22e87e3
CI: Add cdbg/debugd unit tests for macOS
2022-09-19 01:09:56 -07:00
Nils Hanke
52d1afaf0b
CI: Consolidate multi-OS & multi-arch builds into one job
2022-09-19 01:09:56 -07:00
Nils Hanke
1dad1631ca
E2E: Add manual macOS E2E test
2022-09-19 01:09:56 -07:00
Nils Hanke
711532158f
E2E: Fix TEAMS_JOB_NAME for manual test
2022-09-19 01:09:56 -07:00
Nils Hanke
707cbf83b4
CI: Add macOS CLI unit tests
2022-09-19 01:09:56 -07:00
Nils Hanke
2c344a35e2
CI: Test multi-arch CLI builds on push
2022-09-19 01:09:56 -07:00
Nils Hanke
7338563d14
CI/E2E: (Re)move redunant setup steps
2022-09-19 01:09:56 -07:00
Thomas Tendyck
7b7c4b3246
docs: fix CLI reference heading
2022-09-16 15:57:50 +02:00
katexochen
5db3a426a5
Add govulncheck action
2022-09-14 13:07:04 +02:00
Nils Hanke
79229e04df
Create seperate create measurement action
2022-09-14 01:22:18 -07:00
Nils Hanke
9f246d3cc6
E2E: Don't sign & measure E2E built CLI binaries
2022-09-14 01:22:18 -07:00
Nils Hanke
472ba642b7
E2E: Build OSS CLI by default
2022-09-14 01:22:18 -07:00
katexochen
ebd9472866
Use go.work for CI workflows
2022-09-13 15:58:38 +02:00
katexochen
f55524a8d3
Run golangci-lint for all submodules
2022-09-13 15:58:38 +02:00
Leonard Cohnen
c1427123d9
fix azure release image naming
2022-09-12 19:03:01 +02:00
Felix Schuster
ebb8d7ca96
Rewrite install.md and create verify-cli.md ( #124 )
...
* Rewrite install.md and create verify-cli
* Small beautification
* Address review comment
* Shorten examples.md
* Quick brush over examples
* Fix broken links in v2.0
* Fix broken links in v2.0
* fix lint errors
Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
2022-09-12 18:35:12 +02:00
dependabot[bot]
a527a88586
Bump azure/login from 1.4.5 to 1.4.6 ( #125 )
2022-09-12 06:17:39 +00:00
Nils Hanke
0949393dbb
Update build environment to Fedora 36 & Go 1.19.1
2022-09-09 18:11:33 +02:00
Nils Hanke
56accc7766
CI: Simplify "Generate reference docs" step
2022-09-09 11:24:59 +02:00
Nils Hanke
9a560847f7
CI: Remove obsolete checkout for old docs repo
2022-09-09 11:24:59 +02:00
Nils Hanke
9c8ba7b153
CI: Trigger CLI action on cli/cmd & cli/internal/cmd changes
2022-09-09 11:24:59 +02:00
Moritz Eckert
653b01499d
Pin docs actions to sha ( #105 )
2022-09-09 09:51:42 +02:00
Malte Poll
bd6c6ce836
e2e-tests: include k8s 1.25
2022-09-05 16:57:28 +02:00
Thomas Tendyck
a09c53a700
tidy link checking ( #63 )
...
* tidy link checking
* Update .github/docs/release.md
Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>
Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>
2022-09-05 16:08:00 +02:00
Malte Poll
3c0e2239d2
e2e-test azure: ignore unused parameter
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-09-05 12:13:24 +02:00
katexochen
1741c2d941
e2e: Fix machine type
2022-09-05 12:13:24 +02:00
katexochen
d0a3c2d3d1
e2e: Fix reintroduced Azure error
2022-09-05 12:13:24 +02:00
Malte Poll
45a1134915
Change default branch of constellation-fedora-coreos-config repo ( #72 )
2022-09-05 12:12:34 +02:00
Nils Hanke
3c7d76f5a6
Run link checker only when Markdown & HTML files have been changed
2022-09-05 10:36:14 +02:00
Thomas Tendyck
95ff987bfc
add license
2022-09-05 09:17:25 +02:00
Thomas Tendyck
517302e4dc
limit workflows to paths or filetypes
2022-09-05 08:51:36 +02:00
katexochen
43924c7318
e2e: Silence curl
2022-09-02 19:08:33 +02:00
katexochen
9076404b06
Fix manual e2e test
2022-09-02 19:08:33 +02:00
Fabian Kammel
2f871578b2
first implementation of SBOM generation ( #50 )
...
* first implementation of SBOM generation
* updated dependencies as per grype report
* hack: go mod tidy
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-09-02 16:49:59 +02:00
Nils Hanke
39eb58b403
E2E: Use default VM machine type when not overriden
2022-09-02 07:04:11 -07:00
katexochen
b256222b42
e2e: Use default shell parameters
2022-09-02 15:20:25 +02:00
katexochen
ef8130a918
e2e: Enable parallel runs on Azure
2022-09-02 15:20:25 +02:00
katexochen
3c123d9fec
e2e: Fix cleanup on error/cancel
2022-09-02 15:20:25 +02:00
katexochen
90b4067523
e2e: Run tests on GitHub instead of local runner
2022-09-02 15:20:25 +02:00
Moritz Eckert
b95f3dbc91
Add docs to repo ( #38 )
2022-09-02 11:52:42 +02:00
Moritz Eckert
db942ee4b5
Update references to docs ( #36 )
2022-09-01 09:27:25 +02:00
katexochen
7c7a4699bc
Azure e2e tests with manual creds
2022-08-31 14:10:08 +02:00
Daniel Weiße
f38f85b3bf
Run binary builds in parallel ( #28 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-08-31 12:37:18 +02:00
Nils Hanke
fc10b3419d
Build release CLI for Linux arm64 ( #29 )
2022-08-31 12:27:26 +02:00
Daniel Weiße
b27e205399
Use 4 vCPU instances by default ( #24 )
...
* Use 4 vcpu instances by default
* Remove 2 vcpu instance type option
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-08-31 10:33:33 +02:00
Fabian Kammel
66d8c8037b
Release/v0.0.1 ( #20 )
...
* bump images to 0.0.1
* add gh cli commands
* varibale with default value should not be required
* update release docs
* build and upload version manifest as part of release
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-30 15:54:35 +02:00
Nils Hanke
87e68961dd
Add GCP ServiceAccount to E2E test
2022-08-30 04:26:21 -07:00
Nils Hanke
a8cc8a5859
Disable golangci-lint cache
2022-08-29 02:25:04 -07:00
Fabian Kammel
d972f053f9
AB#2287 Public image sharing in Azure ( #350 )
...
Trusted launch VM images in original SIG, additional SIG for community images for CVM
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-26 17:34:46 +02:00
Paul Meyer
904ea06214
Update golangci-lint workflow ( #396 )
2022-08-24 14:55:55 +02:00
dependabot[bot]
a07e3bfaf4
Bump actions/setup-go from 3.2.1 to 3.3.0 ( #399 )
2022-08-24 09:59:35 +00:00
Moritz Eckert
94460654e7
Apply feedback for readme ( #389 )
...
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
2022-08-23 13:46:06 +02:00
Fabian Kammel
33626986fe
Feat/cli multi os arch ( #390 )
...
* Implement multi arch/os pipeline
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-23 13:43:20 +02:00
Malte Poll
cdcbed6ff9
Re-add build-cli workflow
2022-08-19 18:29:10 +02:00
Malte Poll
f16e4bd5f9
e2e test manual: upload measurements
2022-08-19 18:22:55 +02:00
Malte Poll
f7cc72215e
manual e2e test: allow parallel runs
2022-08-19 18:22:55 +02:00
Malte Poll
e841d9201b
Use Azure CVMs in e2e tests
2022-08-19 18:22:55 +02:00
Malte Poll
2d87db3914
Update pseudo-version script to determine future release version based on branch name
2022-08-19 18:22:55 +02:00
Malte Poll
92e4e4d95a
manual operator pipeline ( #383 )
2022-08-19 15:19:08 +02:00
Fabian Kammel
4176f038df
Generate CLI reference also for sub-commands ( #374 )
...
* include all subcommands
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-17 16:58:36 +02:00
Malte Poll
abb4fb4f0f
Build GCP guest agent from github actions in constellation repo
2022-08-16 08:47:58 +02:00
3u13r
9478303f80
deploy cilium via helmchart ( #321 )
2022-08-12 10:20:19 +02:00
Otto Bittner
2f925b5955
Add clone3-workaround to bootstrapper build container
...
The previously encountered error about misconfigured seccomp
filters is mitigated with the workaround added in this commit.
See the repo in the comment for detailed information on
the bug itself.
2022-08-10 17:17:23 +02:00
Otto Bittner
919a2165ae
Run e2e test container on edgserver with privileged
...
The seccomp filter applied by docker presumably
stops curl from working correctly as the glibc changed the
way it creates processes (switch from clone to clone3).
The backwards compatibility layer of glibc does not work
correctly with docker's seccomp filter, making it necessary to
give the container privileged access.
2022-08-10 09:58:43 +02:00
Otto Bittner
c42e79ecfe
AB#2281: Run e2e tests on latest debug image ( #354 )
...
* e2e tests now execute on the latest debug image available by default
* e2e-manual workflow now takes an optional image reference to run on
* isDebugImage is a flag that has to be set in case
you are running a debug image
2022-08-09 15:29:39 +02:00
Malte Poll
aee3f2afa2
Run tests for different projects in parallel
2022-08-09 10:29:04 +02:00
Malte Poll
1df2a20a36
CI: build and upload node operator
2022-08-09 10:29:04 +02:00
Otto Bittner
1b9600c307
AB#2266: Test all supported version with e2e-tests
...
* e2e-test workflows execute two hours earlier.
* Run quick-mode e2e tests for the two older versions we support.
This triggers every night, together with the existing e2e tests.
Idea here is that we know that a cluster can be setup and initialized.
* Run full e2e tests for the two older versions each sunday.
* Do not abort manual e2e runs. This allows for parallel runs.
* Run unprivileged container
2022-08-09 10:02:15 +02:00
dependabot[bot]
2e71e6c740
Bump docker/build-push-action from 3.1.0 to 3.1.1 ( #348 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](1cb9d22b93...c84f382811
)
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-08 15:39:00 +02:00
Otto Bittner
6ef0f5d06b
Remove "debug" from gcp image name.
...
Debug already is part of the family name.
2022-08-05 15:50:26 +02:00
Malte Poll
3b0b3f0335
Use local CoreOS assembler image instead of ghcr
2022-08-05 12:37:22 +02:00
dependabot[bot]
9741c0e6b1
Bump docker/build-push-action from 2.10.0 to 3.1.0 ( #338 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 2.10.0 to 3.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](ac9327eae2...1cb9d22b93
)
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-05 08:53:01 +02:00
dependabot[bot]
68cea57880
Bump docker/metadata-action from 3.8.0 to 4.0.1 ( #337 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 3.8.0 to 4.0.1.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md )
- [Commits](b2391d37b4...69f6fc9d46
)
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-05 08:52:51 +02:00
Daniel Weiße
5c00dafe9b
Fix CoreOS pipeline ( #336 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-08-04 09:24:21 +02:00
Daniel Weiße
5da92d9d8b
AB#2249 Rework image build pipeline ( #326 )
...
* Rework image build pipeline
* Dont cancel workflow runs on main
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-08-03 16:01:36 +02:00
Malte Poll
d3435b06a2
AB#2283 Build CCM GCP from github actions in constellation repo ( #334 )
...
* Build CCM GCP from github actions in constellation repo
* Deploy correct version of GCP CCM
2022-08-03 11:46:11 +02:00
Otto Bittner
5a2809aca2
Disable automatic image builds ( #310 )
...
We only need new images for bootstrapper changes
for each release. Between releases we can use debug images.
For releases we have to build images manually anyway.
Therefore, let's not build these images unnecessarily.
2022-07-28 09:56:49 +02:00
Thomas Tendyck
244426305d
fix integration test workflow
2022-07-26 15:59:04 +02:00
Thomas Tendyck
aa0a07592b
check licenses ( #297 )
...
* AB#2222 check licenses of dependencies
* AB#2222 check-licenses: use setup-go
2022-07-26 11:49:13 +02:00
dependabot[bot]
f57a7e3ed0
Bump docker/setup-buildx-action from 1.7.0 to 2 ( #285 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 1.7.0 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](f211e3e9de...dc7b9719a9
)
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 12:14:17 +02:00
dependabot[bot]
b57e9cf92a
Bump docker/login-action from 1.14.1 to 2 ( #284 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 1.14.1 to 2.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](dd4fa0671b...49ed152c8e
)
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-21 09:45:54 +02:00
Fabian Kammel
085f548333
GitHub action pin-by-hash & dependabot ( #283 )
...
* remove Sunday and Monday morning runs, little value
* run test lint on main, as we do for all linters
* fixup outdated instructions
* use version hash instead of tags
* use dependabot for github actions
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-07-20 10:48:01 +02:00
Fabian Kammel
e315a3b5d8
AB#2070 automatic cli ref update ( #272 )
...
* automatically update cli reference branch in docs repository
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-07-15 10:23:52 +02:00
Malte Poll
cce2611e2a
Simplify node lock and various small changes
...
Co-authored-by: Fabian Kammel <fabian@kammel.dev>
Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
2022-07-14 17:25:18 +02:00
Malte Poll
260d2571c1
Only upload kubeadm certs if key is rotated
...
Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
Co-authored-by: 3u13r <lc@edgeless.systems>
2022-07-14 17:25:18 +02:00
katexochen
66b573ea5d
Bootstrapper
2022-07-14 17:25:18 +02:00
katexochen
1af18e990d
Rename all activation
2022-07-14 17:25:18 +02:00
katexochen
916e5d6b55
Rename coordinator to bootstrapper and rename roles
2022-07-14 17:25:18 +02:00
Fabian Kammel
00dfff6840
AB#2158 publish measurements ( #268 )
...
* cleaned up actions and new measure action to generate, sign and upload measurements
* improve constellation ip fetching to support multiple control nodes
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-07-13 14:04:46 +02:00
Fabian Kammel
be989851d7
Use supported image and start pipeline one hour earlier for less waiting in gcp e2e ( #264 )
2022-07-11 12:52:10 +02:00