constellation

mirror of https://github.com/edgelesssys/constellation.git synced 2024-10-01 01:36:09 -04:00

Author	SHA1	Message	Date
Daniel Weiße	d7a2ddd939	config: add separate option for handling attestation parameters (#1623 ) * Add attestation options to config * Add join-config migration path for clusters with old measurement format * Always create MAA provider for Azure SNP clusters * Remove confidential VM option from provider in favor of attestation options * cli: add config migrate command to handle config migration (#1678) --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2023-05-03 11:11:53 +02:00
Daniel Weiße	ec01c57661	internal: use config to create attestation validators (#1561 ) Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2023-04-06 17:00:56 +02:00
Daniel Weiße	5a0234b3f2	attestation: add option for MAA fallback to verify azure's snp-sev id key digest (#1257 ) * Convert enforceIDKeyDigest setting to enum * Use MAA fallback in Azure SNP attestation * Only create MAA provider if MAA fallback is enabled --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Thomas Tendyck <tt@edgeless.systems>	2023-03-21 12:46:49 +01:00
3u13r	632090c21b	azure: allow a set of idkeydigest values (#991 )	2023-01-18 16:49:55 +01:00
Otto Bittner	23bf4aa665	AB#2379: Validate version in SNP report (#80 ) * AB#2379: Validate version in SNP report * Check that TCB version in VCEK matches COMMITTED_TCB * Check that LAUNCH, CURRENT and REPORTED TCB are at least at the same security level as we are currently. * Rename variables in snpReport struct * Use default values in validator_test.go Signed-off-by: Otto Bittner <cobittner@posteo.net>	2022-09-07 10:39:38 +02:00

5 Commits