constellation

mirror of https://github.com/edgelesssys/constellation.git synced 2025-01-22 13:21:07 -05:00

Author	SHA1	Message	Date
renovate[bot]	e3f29ecf4d	deps: update Kubernetes versions (#3578 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2025-01-16 14:22:02 +01:00
renovate[bot]	f10376fd44	deps: update Terraform dependencies (#3580 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2025-01-16 14:21:35 +01:00
renovate[bot]	44612b1d93	deps: update Kubernetes versions (#3553 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-12-23 14:01:26 +01:00
renovate[bot]	cdb3e461bb	deps: update bazel (core) (#3531 )	2024-12-10 07:13:44 +01:00
renovate[bot]	fc0b3cc4a2	deps: update Kubernetes versions (#3516 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-12-02 14:26:59 +01:00
renovate[bot]	b652baa9c2	deps: update Terraform dependencies (#3510 ) * deps: update Terraform dependencies * Update terraform lock files Signed-off-by: Daniel Weiße <dw@edgeless.systems> * Print module path for lockfile to be generated Signed-off-by: Daniel Weiße <dw@edgeless.systems> --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Daniel Weiße <dw@edgeless.systems>	2024-12-02 12:04:15 +01:00
renovate[bot]	6ebfa28e6d	deps: update Kubernetes versions (#3472 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-12-01 13:13:48 +01:00
Adrian Stobbe	53caa86cb8	docs: clarify for Azure TDX with Terraform provider (#3449 )	2024-10-25 14:00:44 +02:00
renovate[bot]	810f86582d	deps: update Kubernetes versions (#3358 ) * deps: update Kubernetes versions * e2e: run vale with python venv --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Markus Rudy <mr@edgeless.systems>	2024-10-11 19:23:31 +02:00
Markus Rudy	dd1763a36d	helm: manage CoreDNS addon as Helm chart (#3388 ) * Reapply "helm: manage CoreDNS addon as Helm chart (#3236)" This reverts commit `4a9422d288`. * Reapply "helm: fix kubeadm bugs caused by CoreDNS installation (#3353)" This reverts commit `9ecfc3fa19`.	2024-10-07 10:51:37 +02:00
Markus Rudy	850b460002	helm: revert parts of CoreDNS Helm chart packaging (#3366 ) * Revert "helm: fix kubeadm bugs caused by CoreDNS installation (#3353)" This reverts commit `8ef5ea2efe`. * Revert "helm: manage CoreDNS addon as Helm chart (#3236)" This reverts commit `97c77e2a78`. * upgrade-agent: ignore CoreDNS preflight errors	2024-09-19 10:55:21 +02:00
renovate[bot]	a295ecaffb	cli: add `--subscriptionID` flag for `iam create azure` command (#3328 ) * deps: update Terraform azurerm to v4 * Set Azure subscription ID when applying Terraform files * Upgrade azurerm to v4.1.0 * Mark subscriptionID flag as not required * deps: tidy all modules --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-09-17 12:30:22 +02:00
Markus Rudy	8ef5ea2efe	helm: fix kubeadm bugs caused by CoreDNS installation (#3353 ) * helm: rename CoreDNS configmap * upgrade-agent: ignore CoreDNS preflight errors * fixup! helm: rename CoreDNS configmap	2024-09-13 09:47:33 +02:00
Moritz Sanft	5f5df1fc36	terraform-provider-constellation: set correct cc_technology in GCP example (#3352 )	2024-09-12 13:31:21 +02:00
Moritz Sanft	eab9aca26f	terraform-provider-constellation: make kubeconfig output fine-grained (#3334 )	2024-09-03 16:26:08 +02:00
Daniel Weiße	d7bdfccdd7	terraform: tidy files (#3333 ) Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-09-03 09:57:05 +02:00
Moritz Sanft	8555bd00a9	terraform-provider: document MAA patching more prominently (#3330 )	2024-08-29 15:50:26 +02:00
renovate[bot]	6e6ea1a9d5	deps: update Kubernetes versions (#3325 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-08-26 13:46:46 +02:00
renovate[bot]	cf5d9c2f12	deps: update Kubernetes versions (#3298 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-08-26 09:18:56 +02:00
renovate[bot]	e881705f73	deps: update Terraform constellation to v2 (#3306 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2024-08-08 16:34:04 +02:00
Thomas Tendyck	399376d3e3	Make SEV-SNP the default attestation variant on GCP (#3267 ) * Make SNP the default on GCP * fixup! Make SNP * fixup! Make SNP	2024-07-22 13:29:27 +02:00
Markus Rudy	807bbbfd16	cli: annotate CoreDNS resources for Helm (#3236 )	2024-07-12 12:01:49 +02:00
Adrian Stobbe	051cb20b09	ci: fix TF attestation version assertion in integration test (#3237 )	2024-07-10 09:56:36 +02:00
Moritz Sanft	74e0f44230	chore: v2.17.0 post-release (#3229 ) Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>	2024-07-04 11:17:55 +02:00
renovate[bot]	bdfb74f6ca	deps: update Terraform dependencies (#3200 ) * deps: update Terraform dependencies * upgrade random provider * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>	2024-06-27 09:14:10 +02:00
Daniel Weiße	d67d0ac9df	Enable upload of TDX reports to Constellation CDN Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-06-27 09:09:13 +02:00
Daniel Weiße	9159b60331	Implement support for "latest" placeholders for Azure TDX Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-06-27 09:09:13 +02:00
Daniel Weiße	a34493caa6	Enable versions API to handle TDX versions Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-06-27 09:09:13 +02:00
Daniel Weiße	cd4c90af7e	Rename apifetcher methods Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-06-27 09:09:13 +02:00
Markus Rudy	c911eb4e3a	versions: default to k8s v1.29, support k8s v1.30, EOL v1.27 (#3173 ) * versions: remove k8s 1.27 and patch-upgrade the others * versions: add support for k8s 1.30.2 * versions: upgrade cloud provider images	2024-06-19 17:34:34 +02:00
renovate[bot]	aa910cfc25	deps: update Kubernetes versions (#3102 ) * deps: update Kubernetes versions * deps: tidy all modules --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: edgelessci <edgelessci@users.noreply.github.com> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>	2024-06-03 15:08:09 +02:00
renovate[bot]	fffc9db2b5	deps: update Kubernetes versions (#3072 ) Co-authored-by: Leonard Cohnen <lc@edgeless.systems>	2024-05-09 13:38:01 +02:00
Moritz Sanft	913b09aeb8	Support SEV-SNP on GCP (#3011 ) * terraform: enable creation of SEV-SNP VMs on GCP * variant: add SEV-SNP attestation variant * config: add SEV-SNP config options for GCP * measurements: add GCP SEV-SNP measurements * gcp: separate package for SEV-ES * attestation: add GCP SEV-SNP attestation logic * gcp: factor out common logic * choose: add GCP SEV-SNP * cli: add TF variable passthrough for GCP SEV-SNP variables * cli: support GCP SEV-SNP for `constellation verify` * Adjust usage of GCP SEV-SNP throughout codebase * ci: add GCP SEV-SNP * terraform-provider: support GCP SEV-SNP * docs: add GCP SEV-SNP reference * linter fixes * gcp: only run test with TPM simulator * gcp: remove nonsense test * Update cli/internal/cmd/verify.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update docs/docs/overview/clouds.md Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update terraform-provider-constellation/internal/provider/attestation_data_source_test.go Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com> * linter fixes * terraform_provider: correctly pass down CC technology * config: mark attestationconfigapi as unimplemented * gcp: fix comments and typos * snp: use nonce and PK hash in SNP report * snp: ensure we never use ARK supplied by Issuer (#3025) * Make sure SNP ARK is always loaded from config, or fetched from AMD KDS * GCP: Set validator `reportData` correctly --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * attestationconfigapi: add GCP to uploading * snp: use correct cert Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform-provider: enable fetching of attestation config values for GCP SEV-SNP * linter fixes --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com>	2024-04-16 18:13:47 +02:00
Daniel Weiße	dc86a30988	provider: Add build tag for Terraform provider (#2992 ) Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-03-18 14:30:56 +01:00
Malte Poll	d69673fab7	terraform-provider: Add support for STACKIT / OpenStack	2024-03-11 15:59:23 +01:00
Malte Poll	f94c6ca0d4	misc: skip message about community license with marketplace image	2024-03-04 18:17:26 +01:00
Daniel Weiße	d5b3d4fd6f	ci: use collision resistant name for Terraform e2e test (#2967 ) * Use collision resistant name for Terraform e2e test * Remove test suffix from Terraform provider examples --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-03-04 13:48:30 +01:00
Malte Poll	65903459a0	chore: fix unused parameter lint in new golangcilint version	2024-02-21 17:54:07 +01:00
miampf	54cce77bab	deps: convert zap to slog (#2825 )	2024-02-08 14:20:01 +00:00
Moritz Sanft	dde3430da8	terraform: support AWS marketplace images (#2888 ) * terraform: support AWS marketplace images * terraform-provider: support AWS marketplace images * docs: add instructions on AWS marketplace images * ci: adapt marketplace image test for AWS * Update internal/config/config.go Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com> * docs: update config * Update docs/docs/getting-started/marketplaces.md Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com> * docs: update license information * docs: use CSP tabs for marketplace overview * Update docs/docs/getting-started/marketplaces.md Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com> * Update docs/docs/getting-started/marketplaces.md Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com> * Update docs/docs/getting-started/marketplaces.md Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com> --------- Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com> Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>	2024-02-06 12:13:59 +01:00
Daniel Weiße	64c32c2236	ci: make instance type configurable for provider sample (#2893 ) * Make default instance type configurable for provider sample * Set TDX instance type when running TDX provider e2e test * Fix missing attestation variant when setting up stub config in provider e2e test --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-02-05 15:46:57 +01:00
Adrian Stobbe	5ecc5ed9c9	terraform-provider: fix integration test (#2882 )	2024-01-31 18:24:05 +01:00
Adrian Stobbe	9b547bced0	ci: v2.15 post-release cleanup (#2881 ) Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>	2024-01-31 16:45:20 +01:00
Adrian Stobbe	7ce5caae24	terraform-provider: only print license warning once in provider (#2865 ) Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>	2024-01-29 15:21:30 +01:00
Daniel Weiße	78b9b0fc96	terraform-provider: enable Azure TDX (#2854 ) Signed-off-by: Daniel Weiße <dw@edgeless.systems>	2024-01-26 15:46:21 +01:00
Moritz Sanft	5faa374ede	terraform-provider: validate pod ip cidr only on gcp (#2838 )	2024-01-23 09:08:23 +01:00
Adrian Stobbe	60a0a6020e	ci: add upgrade to provider example test (#2775 )	2024-01-13 13:13:10 +01:00
Adrian Stobbe	9a814f91b1	terraform-provider: validate microservice and image version during plan (#2814 )	2024-01-11 12:04:21 +01:00
Malte Poll	a8bca88eeb	k8s: add 1.29, remove 1.26, default 1.28 (#2803 ) undefined	2024-01-08 16:53:12 +01:00
Moritz Sanft	e691e26bd3	cli: support for GCP marketplace images (#2792 ) * cli: support GCP marketplace images * ci: support GCP marketplace images * docs: support GCP marketplace images * bazel: generate * ci: allow GCP for mpi e2e test * Update docs/docs/overview/license.md Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com> * terraform-provider: allow GCP MPIs * terraform-provider: fix error message --------- Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>	2024-01-08 15:51:39 +01:00

1 2

82 Commits