Commit Graph

1753 Commits

Author SHA1 Message Date
Otto Bittner
efcd0337b4
Microservice upgrades (#729)
Run with: constellation upgrade execute --helm.
This will only upgrade the helm charts. No config is needed.

Upgrades are implemented via helm's upgrade action, i.e. they
automatically roll back if something goes wrong. Releases could 
still be managed via helm, even after an upgrade with constellation
has been done.

Currently not user facing as CRD/CR backups are still in progress.
These backups should be automatically created and saved to the 
user's disk as updates may delete CRs. This happens implicitly 
through CRD upgrades, which are part of microservice upgrades.
2022-12-19 16:52:15 +01:00
Thomas Tendyck
990cae58a5 ci: don't checkout head ref for PRs from forks 2022-12-19 16:09:40 +01:00
Thomas Tendyck
5fcc81538c
docs: publish gcp zone fix (#810) 2022-12-19 12:15:44 +01:00
Paul Meyer
e5f5e26838 ci: automated changelog generation
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-16 11:42:36 +01:00
renovate[bot]
8ddc8cdb65 Update dependency kubernetes-sigs/cri-tools to v1.26.0 2022-12-16 10:43:33 +01:00
Paul Meyer
58a5c47d30 ci: update pinned hashes on renovate updates
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-16 10:43:33 +01:00
Moritz Sanft
6e961997ac
fix wrong GCP zone (#804) 2022-12-16 09:41:19 +01:00
Fabian Kammel
b718e92d1d
update slsa-verifier (#803)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-12-15 09:45:46 +01:00
renovate[bot]
365da19ddf
Update module helm.sh/helm/v3 to v3.10.3 [SECURITY] (#802)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-15 09:11:10 +01:00
renovate[bot]
122a7339d1
Update module go.uber.org/multierr to v1.9.0 (#801)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-15 08:03:15 +01:00
renovate[bot]
fd640afe96
Update Terraform google to v4.46.0 (#798)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-14 19:15:51 +01:00
Fabian Kammel
6564fcbf6c
E2E Test Mini Constellation (#796)
* fix: typo to build amd64 for macos
* Implement E2E test for mini constellation
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-12-14 16:51:42 +01:00
Malte Poll
a1d59df1c3
Release action: Do not fail if "latest" is not set (#793) 2022-12-14 14:59:06 +01:00
renovate[bot]
5967b98c25
Update GitHub action dependencies (#778)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-14 14:55:14 +01:00
renovate[bot]
7ffbad12be
Update Constellation containers to v2.3.0-pre.0.20221212170906-a77f38efbb31 (#779)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-14 10:46:15 +01:00
renovate[bot]
868d911918
Update fedora:37 Docker digest to 99aa891 (#797)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-14 10:38:00 +01:00
Paul Meyer
acecfc4033 debugd: document AWS IAM needed for log collection
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 18:24:48 +01:00
Paul Meyer
e5e5d8eaae deubgd: add instance metadata to collected logs
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 18:24:48 +01:00
Paul Meyer
568f288f0d debugd: collect pod logs
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 18:24:48 +01:00
Paul Meyer
f2b324cb88 hack: rename find-image dir
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 16:16:37 +01:00
Paul Meyer
65f7958430 hack: list versions with find-image script
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 16:16:37 +01:00
Paul Meyer
c741ccfb4b kubernetes: use new registry
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 16:08:19 +01:00
Paul Meyer
6862c2587f kubernetes: add v1.26, default to v1.25
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 16:08:19 +01:00
Paul Meyer
0150fcc22c
ci: fix new shellcheck v0.9.0 findings (#795)
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-13 13:24:03 +01:00
Malte Poll
15197dfbd0
Enhance release checklist with lessons from release v2.3 (#791) 2022-12-13 12:04:58 +01:00
Malte Poll
ba8c0a9e30
Fix e2e test networking issue (#792) 2022-12-13 10:07:09 +01:00
Malte Poll
e207081274
adopt changes from linux e2e tests on macOS (#790) 2022-12-13 10:06:36 +01:00
renovate[bot]
fc010e063e
Update module github.com/go-git/go-git/v5 to v5.5.1 (#781)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-12 18:42:58 +01:00
Malte Poll
92fcba118a Release docs for v2.3 2022-12-12 17:52:29 +01:00
Malte Poll
fed31c304a Release CLI: Fix upload path 2022-12-12 17:45:35 +01:00
Malte Poll
cf0b04291a Embed measurements for v2.3.0 2022-12-12 17:45:35 +01:00
Malte Poll
3f6817653b Match pki set and key 2022-12-12 17:45:35 +01:00
Malte Poll
6154a5ef68 OS build pipeline: Correctly choose PKI set 2022-12-12 17:45:35 +01:00
Malte Poll
d6b2e9ea9a Expand PCR selection on AWS 2022-12-12 17:45:35 +01:00
Malte Poll
c9df5cfa09 Fix OS image build pipeline for releases 2022-12-12 17:45:35 +01:00
Malte Poll
c3b657de01 Bump version to v2.3.0 2022-12-12 17:45:35 +01:00
Malte Poll
6d199fcb36 Update CHANGELOG for v2.3.0 2022-12-12 17:45:35 +01:00
Thomas Tendyck
5ecf945226 docs: few fixes and rewording 2022-12-12 14:34:59 +01:00
Moritz Sanft
dd4fc0d869
AB#2685 Add documentation for automatic IAM creation (#711) 2022-12-12 13:33:19 +01:00
renovate[bot]
b267fc8f1a
Update module github.com/Azure/azure-sdk-for-go/sdk/storage/azblob to v0.6.1 (#772)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-12 10:27:29 +01:00
Felix Schuster
204dbab2ac
Add GitLab to demos section (#771) 2022-12-12 09:33:05 +01:00
renovate[bot]
5eae12778a
Update Constellation containers (#777)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2022-12-09 18:45:09 +01:00
3u13r
c993cd6800
join: synchronize control plane joining (#776)
* join: synchronize control plane joining
2022-12-09 18:30:20 +01:00
renovate[bot]
012f739c67
Update Constellation containers (#759)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-09 16:32:58 +01:00
renovate[bot]
34f2d00766
Update module libvirt.org/go/libvirt to v1.8010.0 (#774)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-09 16:01:26 +01:00
renovate[bot]
0655c05d79
Update module github.com/sigstore/sigstore to v1.5.0 (#773)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-09 15:49:50 +01:00
renovate[bot]
1daae77189
Update AWS SDK (#769)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-09 15:28:27 +01:00
renovate[bot]
85f9d62a9f
Update Terraform azurerm to v3.35.0 (#768)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-09 15:21:13 +01:00
renovate[bot]
4ec2fceeef
Update Terraform aws to v4.46.0 (#767)
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-12-09 15:13:09 +01:00
Malte Poll
3c5fa3175a
Fix image build pipeline: Use braces to group complex expressions (#770) 2022-12-09 14:48:52 +01:00