Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-10-01 01:36:09 -04:00
Code Issues Packages Projects Releases Wiki Activity
1,824 Commits 133 Branches 44 Tags 106 MiB
5dc080c3b3
Commit Graph

1824 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Otto Bittner
90b88e1cf9 kms: rename kms to keyservice 
In the light of extending our eKMS support it will be helpful
to have a tighter use of the word "KMS".
KMS should refer to the actual component that manages keys.
The keyservice, also called KMS in the constellation code,
does not manage keys itself. It talks to a KMS backend,
which in turn does the actual key management.
 2023-01-16 11:56:34 +01:00
3u13r
67f8336b9d
operator: reliability and simplification (#968) 
* operator: make tests more reliable

* operator: simplify RetryOnConflict statements
 2023-01-13 16:49:41 +01:00
leongross
c36a009188
ci: reproducible builds ko (no gcp) (#871) 
* add ko build actions and worklflows
* add apko build actions and worklflows
* add .ko.yaml file
* add apko image definitions
* add signing container, add signing sboms, add uploading sboms
 2023-01-13 16:38:31 +01:00
Malte Poll
82462fab17
image: enable serial console access for MiniConstellation to simplify troubleshooting (#964) 
- enable serial console access for QEMU / mini Constellation
- print motd if serial console access is enabled
 2023-01-13 16:01:45 +01:00
Paul Meyer
5dcaf84e23 ci: increase Go test timeout in e2e lb 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-13 12:03:27 +01:00
renovate[bot]
6311b45708
Update module github.com/siderolabs/talos/pkg/machinery to v1.3.2 (#953) 
* Update module github.com/siderolabs/talos/pkg/machinery to v1.3.2
* [bot] Tidy all modules
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-01-13 11:27:52 +01:00
3u13r
0d0851e410
operator: make test more resilient (#959) 2023-01-13 11:09:26 +01:00
Paul Meyer
5cb10aef45 ci: find latest image with versionsapi action 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-13 10:23:43 +01:00
Paul Meyer
6d6ef99f11 ci: run versionsapi as docker action 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-13 10:23:43 +01:00
Malte Poll
7bf7286242
cli: include search paths for image info json in error message printed to user (#963) 2023-01-13 10:15:49 +01:00
Paul Meyer
8cfa402c9a ci: refactor titles of prs made by bots 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-13 10:08:51 +01:00
Malte Poll
bcd8aa9acc
Use upstream node-maintenance-operator (#115) 2023-01-12 16:01:03 +01:00
Nils Hanke
b3c3c2fa8c
qemu: remove registry_auth for Docker Terraform module (#957) 2023-01-12 15:47:50 +01:00
Leonard Cohnen
ab508a52d6 operator: make test more resilient 2023-01-12 15:35:07 +01:00
Paul Meyer
5782e0c884 ci: deactivate dryrun of image deletion 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-12 13:43:42 +01:00
Paul Meyer
d0e9f427d1
deps: update Go to v1.19.5 (#949) 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-12 13:36:17 +01:00
renovate[bot]
11630110dd
Update golang Docker tag to v1.19.5 (#940) 
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-12 13:28:31 +01:00
Malte Poll
7cc8f2c884 ci: manual e2e: github.event.inputs -> inputs 2023-01-12 13:24:07 +01:00
Malte Poll
ba59d8302d dev-docs: describe automated release process 2023-01-12 13:24:07 +01:00
Malte Poll
5ba1b6780b ci: auto detect if released OS images should be marked as "latest" 2023-01-12 13:24:07 +01:00
Malte Poll
77d921824e ci: switch default AWS zone to eu-central-1c 2023-01-12 13:24:07 +01:00
Malte Poll
67be4016f5 ci: generate signed measurements for QEMU 2023-01-12 13:24:07 +01:00
Malte Poll
d851623c0d ci: implement second half of release checklist 2023-01-12 13:24:07 +01:00
Malte Poll
142af75776 ci: implement second half of release checklist 2023-01-12 13:24:07 +01:00
Malte Poll
49288f5d30 ci: use explicit input to choose cosign key for OS image measurements 2023-01-12 13:24:07 +01:00
Malte Poll
16d27b5157 ci: update hardcoded measurements during release pipeline 2023-01-12 13:24:07 +01:00
Malte Poll
75fb61e001 attestation: codegen for hardcoded measurements in go 2023-01-12 13:24:07 +01:00
Malte Poll
3077dd4f27 ci: implement first half of release checklist 2023-01-12 13:24:07 +01:00
Malte Poll
8e87a40708 ci: remove unused PPA 2023-01-12 13:24:07 +01:00
Moritz Sanft
64ec0408da
cli: automatically add iam values to config (#782) 
* AB#2706 Automatically add IAM values to config
 2023-01-12 11:35:26 +01:00
Thomas Tendyck
c66119fe93
docs: remove disclaimer about resolved Azure performance issue (#944) 
* docs: remove disclaimer about resolved Azure performance issue

* Update first-steps.md

* Update first-steps.md
 2023-01-11 17:29:29 +01:00
release[bot]
0d1b2283f6 Generate docs for v2.4.0 2023-01-11 16:26:07 +01:00
Fabian Kammel
82a0fcbb9d
upgrade: fix broken reference from constellation-os to constellation-version (#939) 
* update constellation-os to constellation-version references
* update nodeimage to nodeversion in CRD type name
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: Malte Poll <mp@edgeless.systems>
 2023-01-11 16:07:07 +01:00
Paul Meyer
4bc191e434 versions: move hash generator into own package 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-11 14:29:32 +01:00
Paul Meyer
c081664d03 versions: repair hash generation 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-11 14:29:32 +01:00
renovate[bot]
efd99975a4
Update Google SDK (#928) 2023-01-11 14:28:45 +01:00
Paul Meyer
c1e776a1a2
ci: join macos with normal tests (#933) 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-11 14:27:18 +01:00
Otto Bittner
b89a30130f rfc: mention required iam secrets for recovery 2023-01-11 11:58:55 +01:00
Leonard Cohnen
e9da70fde9 ci: remove versions manifest 2023-01-11 11:10:44 +01:00
Malte Poll
fe8518a4e3 release: update measurements 2023-01-11 11:10:44 +01:00
release[bot]
e8fad4b7f9 Update version to v2.4.0 2023-01-11 11:10:44 +01:00
Paul Meyer
e9442ac1ce
deps: update and pin github.com/katexochen/sh (#922) 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-11 10:17:31 +01:00
Paul Meyer
ef086bf02d versionsapi: log aws region 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-10 17:02:01 +01:00
Daniel Weiße
41fca129f6
devdocs: documentation of logging conventions (#899) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2023-01-10 15:26:12 +01:00
renovate[bot]
cf91e1513f
Update gcr.io/distroless/static:nonroot Docker digest to 1fa522f (#921) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-01-10 15:08:22 +01:00
Moritz Eckert
b2f8f72f1e
dev-docs: move into top-level dir (#924) 2023-01-10 14:18:41 +01:00
Otto Bittner
c19e894d43 Revert "Update Google SDK (#907)" 
This reverts commit e54b2ec95f.
 2023-01-10 11:41:43 +01:00
Otto Bittner
43afb86e33
rfc: add recovery section to eKMS rfc (#919) 
This new section describes how recovery currently depends on
the mastersecret and how that will change.

Co-authored-by: Daniel Weiße <dw@edgeless.systems>
 2023-01-10 11:36:11 +01:00
renovate[bot]
78fd2abc5f
Update gcr.io/distroless/static Docker digest to ea2ed73 (#920) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-01-10 07:59:58 +01:00
renovate[bot]
9fbf298565
Update actions/cache action to v3.2.3 (#909) 
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2023-01-09 18:30:41 +01:00