Paul Meyer
50c4ea9be6
deps: update libvirt container to v2.7.0-pre
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-10 10:46:46 -05:00
Paul Meyer
f5f6c7eb35
deps: add missing Go repo rule
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-10 10:02:28 -05:00
Paul Meyer
cc60de312e
ci: adopt tidy workflow for bazel
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-10 10:02:28 -05:00
Thomas Tendyck
64e1f553d1
cli: remove Edition in version command, which contains duplicate info
2023-03-10 11:36:44 +01:00
Paul Meyer
593253e090
ci: ignore replaced ghsa ( #1392 )
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-10 11:13:05 +01:00
Malte Poll
d34f4d4457
image: increase esp size ( #1393 )
2023-03-10 11:08:40 +01:00
Moritz Sanft
01705feb51
ci: upload cli version list ( #1377 )
...
* upload cli version list
* fix flag
* name
* allow cli kind for listing
* [remove] update vapi cli
* allow cli kind
* use latest versionsapi image version
* fix kind parsing
* use workflow calls in on_release action
* [remove] update container tag
* change back to latest tag
2023-03-10 10:21:58 +01:00
Otto Bittner
b356af5a39
docs: minor adjustements to the release docs ( #1384 )
2023-03-09 18:03:47 +01:00
Nils Hanke
dc4769d0a0
constants: use "Enterprise" for enterprise build
2023-03-09 17:32:50 +01:00
Daniel Weiße
83d10b0e70
hack: remove unused tools ( #1387 )
...
* Remove unused pcr-compare tool
* Remove unused pcr-reader tool
* Remove obsolete image-measurement tool
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-03-09 16:59:33 +01:00
Malte Poll
bdba9d8ba6
bazel: add build files for go ( #1186 )
...
* build: correct toolchain order
* build: gazelle-update-repos
* build: use pregenerated proto for dependencies
* update bazeldnf
* deps: tpm simulator
* Update Google trillian module
* cli: add stamping as alternative build info source
* bazel: add go_test wrappers, mark special tests and select testing deps
* deps: add libvirt deps
* deps: go-libvirt patches
* deps: cloudflare circl patches
* bazel: add go_test wrappers, mark special tests and select testing deps
* bazel: keep gazelle overrides
* bazel: cleanup bazelrc
* bazel: switch CMakeLists.txt to use bazel
* bazel: fix injection of version information via stamping
* bazel: commit all build files
* dev-docs: document bazel usage
* deps: upgrade zig-cc for go 1.20
* bazel: update Perl for macOS arm64 & Linux arm64 support
* bazel: use static perl toolchain for OpenSSL
* bazel: use static protobuf (protoc) toolchain
* deps: add git and go to nix deps
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-09 15:23:42 +01:00
Daniel Weiße
e07be3d6f8
fix: add measurement-reader to build pipeline ( #1386 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-03-09 15:01:09 +01:00
derpsteb
02694c0648
docs: add release v2.6.0
2023-03-09 13:14:28 +01:00
Daniel Weiße
8c87bba755
Add measurement reader ( #1381 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-03-09 11:22:58 +01:00
Daniel Weiße
5bad5f768b
attestation: create issuer based on kernel cmd line ( #1355 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-03-09 09:47:28 +01:00
Paul Meyer
80ff380859
renovate: exclude cloud-provider-gcp ( #1382 )
...
from constellation container group
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 18:41:21 +01:00
Otto Bittner
0e91e4aabf
docs: extend release docs with image deletion manual ( #1371 )
...
@malt3 wrote this guide on how to find and delete all image
resources. I found it very helpful.
Co-authored-by: Malte Poll <mp@edgeless.systems>
2023-03-08 16:02:29 +01:00
edgelessci
ff7ac40590
docs: update cli reference ( #1378 )
...
Co-authored-by: daniel-weisse <daniel-weisse@users.noreply.github.com>
2023-03-08 15:53:25 +01:00
Daniel Weiße
446b77828b
cli: add missing flag to miniConstellation ( #1374 )
...
* Add missing flag to miniConstellation
* Add config merger to miniConstellation
* Soft fail if config can not be merged
* Remove config flattening
* Release spinner stop lock when stopping finished
---------
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: Nils Hanke <nils.hanke@outlook.com>
2023-03-08 15:48:36 +01:00
Paul Meyer
ebf7dd8842
openstack: use metadata client where possible
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 09:04:57 -05:00
Paul Meyer
0d24b3ee29
codeowners: own openstack
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 09:04:57 -05:00
Paul Meyer
acbd70c741
openstack: implement api client and metadata list
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 09:04:57 -05:00
Paul Meyer
418f08bf40
openstack: implement imds and metadata self
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 09:04:57 -05:00
Paul Meyer
630016d1b3
openstack: use password to authenticate in cluster
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 09:04:57 -05:00
Paul Meyer
850b43ae3a
renovate: disable major updates of transitive deps ( #1359 )
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 11:50:20 +01:00
edgelessci
00a27c5168
deps: update apk package hashes ( #1368 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 10:55:35 +01:00
Malte Poll
ac94e01642
image: downgrade systemd to 251.11-2 ( #1369 )
2023-03-08 10:45:53 +01:00
renovate[bot]
262e5674a2
deps: update golang Docker tag to v1.20.2 ( #1370 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 10:41:52 +01:00
Paul Meyer
64fc43f276
use any instead of interface{} ( #1354 )
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 10:31:20 +01:00
renovate[bot]
fede4ec6d2
deps: update GitHub action dependencies ( #1365 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 10:06:42 +01:00
renovate[bot]
1da64e7702
deps: update ubuntu:22.04 Docker digest to b2175cd ( #1364 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 10:06:19 +01:00
Paul Meyer
74fc6239b2
deps: update to Go 1.20.2 ( #1366 )
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-08 10:05:36 +01:00
renovate[bot]
cc00cff6b5
deps: update ubuntu:20.04 Docker digest to 9fa30fc ( #1363 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 18:18:41 +01:00
renovate[bot]
38d80f9608
deps: update golang:1.20.1 Docker digest to b03e750 ( #1362 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 18:18:15 +01:00
renovate[bot]
f82d2a3999
deps: update gcr.io/distroless/static:nonroot Docker digest to 21e5d22 ( #1361 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 18:13:55 +01:00
renovate[bot]
57786db96b
deps: update gcr.io/distroless/static Docker digest to 20c99e5 ( #1360 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 18:13:34 +01:00
Paul Meyer
cc6006c6ea
ci: fix labeling when building on other branches
...
than github.head_ref, e.g., during release
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 11:32:41 -05:00
Paul Meyer
e4b5655646
ci: group output
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 11:32:41 -05:00
Paul Meyer
f4a4a044fe
ci: tee GitHub output
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 11:32:41 -05:00
Paul Meyer
53bc875e59
ci: use latest ver of versionsapi cli container
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-07 04:39:17 -05:00
Malte Poll
0ba2c1c2bd
image: add systemd-boot as explicit dependency ( #1351 )
2023-03-07 10:19:28 +01:00
Malte Poll
3d0ad0b8e1
ci: move aws iam create test to less utilized zone ( #1350 )
2023-03-07 09:32:26 +01:00
Malte Poll
e02183b9d9
Merge pull request from GHSA-6w5f-5wgr-qjg5
2023-03-07 09:26:36 +01:00
Malte Poll
62ea224d36
attestation: remove PCR[0] and PCR[10] from enterprise measurements ( #1348 )
...
This will help the measurement generation done as part of internal/attestation/measurements/measurement-generator.
It can currently replace measurements but not reformat the code (in cases where the number of measurements differs).
2023-03-06 17:11:14 +01:00
Daniel Weiße
34330b1228
bootstrapper: make sure InitServer is only shut down after Init has returned ( #1347 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-03-06 16:48:13 +01:00
Malte Poll
1624af0cc7
image: pin aws uefivars version and install new deps ( #1345 )
2023-03-06 13:29:15 +01:00
Thomas Tendyck
c94d1db76d
attestation: remove PCR 0 and 10 on GCP
2023-03-06 13:09:57 +01:00
Thomas Tendyck
0a344e4cf6
attestation: validate GCP machine state
2023-03-06 13:09:57 +01:00
Thomas Tendyck
2535073df8
attestation: add MachineState to ValidateCVM
2023-03-06 13:09:57 +01:00
Thomas Tendyck
3471d73c6c
docs: publish
2023-03-06 10:43:49 +01:00