Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-09-20 16:26:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
689 Commits 131 Branches 43 Tags 105 MiB
95ff987bfc
Commit Graph

689 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
katexochen
67b25d2771 Move cli/cloudprovider into internal/cloud 2022-06-08 11:53:55 +02:00
katexochen
aee4d44b45 Create cli/internal package 2022-06-08 11:53:55 +02:00
katexochen
917be71d89 Add Go workspace files to dockerignore 2022-06-08 11:06:38 +02:00
Leonard Cohnen
e5c4171a14 fix cilium encryption in gcp 2022-06-04 18:43:42 +02:00
Fabian Kammel
a15605475e AB#2104 early boot logging (#175) 2022-06-03 11:55:18 +02:00
Leonard Cohnen
5ceab1c194 prepare release 2022-06-02 13:08:29 +02:00
Leonard Cohnen
791d5564ba replace flannel with cilium 2022-06-02 13:08:25 +02:00
Leonard Cohnen
7e1c898870 prepare release 2022-06-02 13:06:31 +02:00
3u13r
c4f15cd30b bump images (#191) 2022-06-02 10:30:43 +02:00
3u13r
430ab6ab1f fix build coordinator workflow (#190) 
Co-authored-by: Malte Poll <mp@edgeless.systems>
 2022-06-01 17:17:37 +02:00
katexochen
fd3008f5cc Remove go workspace files from dockerfiles 2022-06-01 14:10:42 +02:00
katexochen
05304d081e Inform about Go workspaces in CONTRIBUTING.md 2022-06-01 12:15:02 +02:00
katexochen
2c8ccf881a Update unit test workflow 2022-06-01 12:15:02 +02:00
katexochen
2fb2c8c341 Remove and ignore Go workspace files 2022-06-01 12:15:02 +02:00
katexochen
aaa5d2ab66 Replace deprecated strings.Title 2022-06-01 12:12:33 +02:00
Christoph Meyer
db5468a886 Deploy KMS server image in Constellation 
Add image pull secret for ghcr.io
 2022-05-31 11:13:26 +02:00
Malte Poll
4dcb3aa062 Always pull newest image version of COSA (#182) 2022-05-31 10:36:29 +02:00
Malte Poll
c88dc8f59a Write images README with instructions on how to build constellation images locally (#181) 
Write images README with instructions on how to build constellation images locally

Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
 2022-05-30 11:38:06 +02:00
leongross
15e668d09b Add machine variable to terraform module (#179) 
* add variable machine to enable/disable secure boot

* add role description
 2022-05-30 10:29:34 +02:00
Thomas Tendyck
b84d8add73 Create CHANGELOG.md (#180) 
* Create CHANGELOG.md

* Update CHANGELOG.md
 2022-05-27 16:53:16 +02:00
Thomas Tendyck
42fc497477 cli: fix and tweak config file wording 2022-05-27 16:53:04 +02:00
Thomas Tendyck
9f0c751f1b cli: fix command order and minor wording tweaks in config cmd 2022-05-27 16:53:04 +02:00
Malte Poll
88ec7397c9 terraform libvirt: document usage 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-25 10:30:58 +02:00
Malte Poll
24bf1d21f7 hack: script to transform terraform state to constellation state 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-25 10:30:58 +02:00
Malte Poll
6bb393fcb7 cdbg: allow parsing state to query QEMU instances for cdbg deploy 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-25 10:30:58 +02:00
Malte Poll
ff657a2ee7 terraform template libvirt 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-25 10:30:58 +02:00
Daniel Weiße
869448c3e1 Add mutual aTLS support (#176) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2022-05-24 16:33:44 +02:00
Malte Poll
5d7bf86b30 GCP create: Embed constellation role in instance templates to allow role detection prior to node activation 2022-05-24 10:37:02 +02:00
Thomas Tendyck
2ba3c153de AB#2117 cli: validate config (#170) 
* AB#2117 cli: validate config

* update hack/go.mod
 2022-05-23 15:01:39 +02:00
Fabian Kammel
45bf9f15fb always try to upload constellation state file (#173) 2022-05-23 14:43:32 +02:00
Malte Poll
c16f5391db bump images 1653299706 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-23 14:26:10 +02:00
Malte Poll
0c244ee2bc Use cmake to compile debugd / cdbg 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-23 13:15:04 +02:00
Malte Poll
1331ee4077 Install kubernetes on init / join and restart kubelet after reboot 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-23 11:40:22 +02:00
Malte Poll
f67cf2d31f k8s binary components version map and install directives 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-23 11:40:22 +02:00
Malte Poll
14f6985fe3 Implement binary file installer & extractor 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-05-23 11:40:22 +02:00
Daniel Weiße
10333def05 Fedora build instructions && and more reproducible builds (#166) 
* Add Fedora build requirements

* Move cmake builds into docker

* Add Docker to requirements

Signed-off-by: Daniel Weiße <dw@edgeless.systems>

Co-authored-by: Malte Poll <mp@edgeless.systems>
 2022-05-23 10:35:14 +02:00
Thomas Tendyck
65c387c2b2 remove old e2e test 2022-05-21 14:30:05 +02:00
Moritz Eckert
6dc97590fe Enable and configure k8s audit-log (#160) 
* Enable and configure k8s audit-log

* Update coordinator/kubernetes/k8sapi/kubeadm_config.go

Co-authored-by: Malte Poll <mp@edgeless.systems>

* add mount point for audit log dir in kubeadm conf

* Mount audit policy into kube-apiserver static pod

* Write default auditpolicy on cluster init / cluster join

Co-authored-by: Malte Poll <mp@edgeless.systems>
 2022-05-20 17:30:37 +02:00
Moritz Eckert
e4a9be832c Add cis benchmark to conformance test (#165) 
* Add cis benchmark to conformance docs

* Update e2e workflow to include cis benchmarks
 2022-05-19 14:57:21 +02:00
Thomas Tendyck
206dae8fd2 readme: move debugd and local image testing to other files and add a component overview 2022-05-19 08:56:28 +02:00
Daniel Weiße
0a24de24ee AB#2103 Derive key from LUKS UUID instead of disk name (#156) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2022-05-19 08:47:17 +02:00
Fabian Kammel
daf356d88e fixed wording (#162) 2022-05-18 19:01:11 +02:00
Fabian Kammel
f620d6194d run go mod tidy in hack folder. (#161) 2022-05-18 18:44:40 +02:00
Fabian Kammel
135c787001 AB#2098 versioned & strict yaml reading (#157) 2022-05-18 18:10:57 +02:00
Fabian Kammel
7c2d1c3490 AB#2094 cloud provider specific configs (#151) 
add argument to generate cloud specific configuration file
 2022-05-18 11:39:14 +02:00
Nils Hanke
54e2e492df Update authorizedKeys field names for cdbg in README 2022-05-18 10:48:52 +02:00
Nils Hanke
5fa23d4bec Use "new" config for YAML parsing directives 2022-05-18 10:48:52 +02:00
Nils Hanke
c9982b979c Add unit test for SSH user creation on nodes 2022-05-17 18:00:21 +02:00
Nils Hanke
ed071d389c Add SSH users on subsequent coordinators & nodes 2022-05-17 18:00:21 +02:00
Malte Poll
084ed0c4ef cdbg config: use unified firewall rules 2022-05-17 17:50:52 +02:00