Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-01-22 13:21:07 -05:00
Code Issues Packages Projects Releases Wiki Activity
4,526 Commits 137 Branches 49 Tags 96 MiB
c24e149b12
Commit Graph

1127 Commits

Author SHA1 Message Date
renovate[bot]
1bdc0944ae
deps: update K8s constrained Azure versions (#3374) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-10-11 17:04:08 +02:00
edgelessci
1561d67a12
image: update measurements and image version (#3402) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-10-11 09:35:11 +02:00
3u13r
2854136192
Allow upgrades on azure without Terraform changes on LBs created from within Kubernetes (#3257) 
* k8s: use separate lb for K8s services on azure

* terraform: introduce local revision variable and data resource

* terraform: azure: dont expose full nodeport range

* docs: add Azure load balancer migration
 2024-10-09 11:31:17 +02:00
edgelessci
2dcea4fa63
image: update measurements and image version (#3398) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-10-09 08:34:16 +02:00
Markus Rudy
961fabbd1a
helm: upgrade Cilium to v1.15.8 (#3392) 
* helm: upgrade to Cilium v1.15.8

* fixup! helm: upgrade to Cilium v1.15.8

use proper release tag

* fixup! helm: upgrade to Cilium v1.15.8

use images build from tag
 2024-10-08 10:55:29 +02:00
Markus Rudy
dd1763a36d
helm: manage CoreDNS addon as Helm chart (#3388) 
* Reapply "helm: manage CoreDNS addon as Helm chart (#3236)"

This reverts commit 4a9422d288.

* Reapply "helm: fix kubeadm bugs caused by CoreDNS installation (#3353)"

This reverts commit 9ecfc3fa19.
 2024-10-07 10:51:37 +02:00
edgelessci
cecc57f993
image: update measurements and image version (#3386) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-10-07 08:45:03 +02:00
edgelessci
097879a9ca
image: update measurements and image version (#3384) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-10-02 09:32:22 +02:00
edgelessci
2f67eb3f54
image: update measurements and image version (#3379) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-27 08:10:42 +02:00
3u13r
882d602524
openstack: set region in cluster cloud client (#3375) 2024-09-26 11:08:06 +02:00
edgelessci
d65987cb15
image: update measurements and image version (#3377) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-25 08:41:47 +02:00
edgelessci
6fc051cf98
image: update measurements and image version (#3371) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-20 08:21:52 +02:00
Markus Rudy
850b460002
helm: revert parts of CoreDNS Helm chart packaging (#3366) 
* Revert "helm: fix kubeadm bugs caused by CoreDNS installation (#3353)"

This reverts commit 8ef5ea2efe.

* Revert "helm: manage CoreDNS addon as Helm chart (#3236)"

This reverts commit 97c77e2a78.

* upgrade-agent: ignore CoreDNS preflight errors
 2024-09-19 10:55:21 +02:00
edgelessci
3a40e79779
image: update measurements and image version (#3362) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-18 08:35:33 +02:00
edgelessci
994c4523b0
image: update measurements and image version (#3354) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-13 10:30:55 +02:00
Markus Rudy
8ef5ea2efe
helm: fix kubeadm bugs caused by CoreDNS installation (#3353) 
* helm: rename CoreDNS configmap

* upgrade-agent: ignore CoreDNS preflight errors

* fixup! helm: rename CoreDNS configmap
 2024-09-13 09:47:33 +02:00
edgelessci
7e9c316201
image: update measurements and image version (#3350) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-11 08:30:27 +02:00
Markus Rudy
98f359e039
helm: allow multiple default routes (#3344) 2024-09-10 13:17:26 +02:00
renovate[bot]
3e37819fe7
deps: update cloud-provider-gcp (K8s version constrained) (#3320) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-10 13:16:51 +02:00
renovate[bot]
665cff0071
deps: update K8s constrained AWS versions (#3319) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-10 11:41:44 +02:00
renovate[bot]
282fd315d2
deps: update K8s constrained Azure versions (#3346) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-09-10 11:39:05 +02:00
edgelessci
a4b29ebdb6
image: update measurements and image version (#3338) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-06 08:13:50 +02:00
edgelessci
a3bd2e029c
image: update measurements and image version (#3335) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-04 08:36:51 +02:00
edgelessci
40d0811298
image: update measurements and image version (#3332) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-09-03 10:43:40 +02:00
Daniel Weiße
c11631ec11
logging: reduce grpc logging noise (#3329) 
* Normalize gRPC logs to print at warn level only
* Fix grpcLogger level enablement

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-08-29 10:44:22 +02:00
renovate[bot]
6e6ea1a9d5
deps: update Kubernetes versions (#3325) 
* deps: update Kubernetes versions

* deps: tidy all modules

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-26 13:46:46 +02:00
renovate[bot]
cf5d9c2f12
deps: update Kubernetes versions (#3298) 
* deps: update Kubernetes versions

* deps: tidy all modules

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-26 09:18:56 +02:00
edgelessci
03c6ae20bb
image: update measurements and image version (#3322) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-23 10:20:46 +02:00
renovate[bot]
7f2b388168
deps: update K8s constrained GCP versions (#3289) 
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
 2024-08-23 01:17:24 +02:00
renovate[bot]
f9dd864229
deps: update ghcr.io/edgelesssys/gcp-guest-agent Docker tag to v20240816 (#3285) 
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
 2024-08-23 00:30:51 +02:00
renovate[bot]
10b08a030e
deps: update K8s constrained Azure versions (#3246) 
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
 2024-08-22 23:42:05 +02:00
edgelessci
57ffe6d4a7
image: update measurements and image version (#3316) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-22 08:27:27 +02:00
edgelessci
f41b7fa9d7
image: update measurements and image version (#3312) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-14 08:12:10 +02:00
renovate[bot]
fe96153507
deps: update bazel (modules) (#3304) 
* deps: update bazel (modules)
* Set std=c++14
* deps: tidy all modules

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
Co-authored-by: Markus Rudy <mr@edgeless.systems>
 2024-08-09 11:00:22 +02:00
edgelessci
9b1b04f4e5
image: update measurements and image version (#3307) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-09 08:24:39 +02:00
renovate[bot]
087855ec00
deps: update module github.com/gophercloud/gophercloud to v2 (#3300) 
* deps: update module github.com/gophercloud/gophercloud to v2

* update module github.com/gophercloud/utils to v2 and add context

Signed-off-by: Daniel Weiße <dw@edgeless.systems>

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
 2024-08-08 10:37:09 +02:00
edgelessci
e41bb61694
image: update measurements and image version (#3296) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-07 09:03:54 +02:00
edgelessci
e3077aa80f
image: update measurements and image version (#3284) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-08-02 08:34:08 +02:00
renovate[bot]
211670f89d
deps: update module github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/network/armnetwork/v5 to v6 (#3280) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
 2024-08-01 12:46:03 +02:00
renovate[bot]
61bb7c2c26
deps: update module github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute/v5 to v6 (#3279) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
 2024-08-01 11:28:15 +02:00
edgelessci
43fde2ea79
image: update measurements and image version (#3277) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-31 08:45:51 +02:00
edgelessci
60bdec5fb1
image: update measurements and image version (#3273) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-26 08:20:53 +02:00
edgelessci
eb9aa8238a
image: update measurements and image version (#3271) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-24 08:19:30 +02:00
Thomas Tendyck
399376d3e3
Make SEV-SNP the default attestation variant on GCP (#3267) 
* Make SNP the default on GCP

* fixup! Make SNP

* fixup! Make SNP
 2024-07-22 13:29:27 +02:00
3u13r
4573f10884
attestation: replace expired test vlek (#3269) 
Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
 2024-07-22 00:14:20 +02:00
edgelessci
3f6e7f9c53
image: update measurements and image version (#3265) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-19 07:53:33 +02:00
edgelessci
1edc1966f9
image: update measurements and image version (#3260) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-17 08:46:15 +02:00
3u13r
38b72f8294
helm: add serviceProxyName to conformance values (#3247) 2024-07-14 15:49:45 +02:00
Markus Rudy
97c77e2a78 helm: manage CoreDNS addon as Helm chart (#3236) 
* helm: generate CoreDNS Helm chart
* helm: load CoreDNS Helm chart
* bootstrapper: don't install coredns addon
 2024-07-12 12:01:49 +02:00
Markus Rudy
807bbbfd16 cli: annotate CoreDNS resources for Helm (#3236) 2024-07-12 12:01:49 +02:00
edgelessci
529eab2bf9
image: update measurements and image version (#3250) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-12 08:27:08 +02:00
Daniel Weiße
e08ed38be8
ci: fix relative paths for verify e2e test (#3249) 
* Use absolute paths to avoid issues with bazel run changing working directory
* Fix error message in attestationconfig cli

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-07-12 08:26:36 +02:00
Malte Poll
65ed286c7d
image: replicate nvidia Azure images in eastus2 (#3027) 
Co-authored-by: derpsteb <ob@edgeless.systems>
 2024-07-11 11:09:15 +02:00
Daniel Weiße
6c24963570
attestationconfigapi: revise upload frequency (#3238) 
* Add attestationconfigapi compare command
* Only upload the lowest version for each verify test

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-07-10 12:59:02 +02:00
edgelessci
543ba96e59
image: update measurements and image version (#3243) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-10 07:40:24 +02:00
renovate[bot]
8c680ee811
deps: update ghcr.io/edgelesssys/gcp-guest-agent Docker tag to v20240701 (#3227) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-07-10 06:46:32 +02:00
edgelessci
2a59f2d464
image: update measurements and image version (#3234) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-07-05 08:38:48 +02:00
Daniel Weiße
20269ab46e
gcp: pass context to metadata functions (#3228) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-07-03 14:41:29 +02:00
renovate[bot]
9418535229
deps: update Go dependencies (#3215) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com>
 2024-07-03 13:59:03 +02:00
Daniel Weiße
c7e8dfd1e8
deps: remove dependency on helm/v2 (#3219) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-07-01 16:13:36 +02:00
renovate[bot]
782752080f
deps: update Constellation containers to v2.17.0-pre.0.20240627193502-8aed4bb0fe45 (#3214) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-06-28 08:34:08 +02:00
edgelessci
9445a1af04
image: update measurements and image version (#3213) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-28 08:18:14 +02:00
Daniel Weiße
d67d0ac9df Enable upload of TDX reports to Constellation CDN 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-27 09:09:13 +02:00
Daniel Weiße
9159b60331 Implement support for "latest" placeholders for Azure TDX 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-27 09:09:13 +02:00
Daniel Weiße
a34493caa6 Enable versions API to handle TDX versions 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-27 09:09:13 +02:00
Daniel Weiße
fbddbc9867 Dont re-marshal fetched objects 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-27 09:09:13 +02:00
Daniel Weiße
cd4c90af7e Rename apifetcher methods 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-27 09:09:13 +02:00
Daniel Weiße
52a65c20ac Move upload/delete code to its own package 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-27 09:09:13 +02:00
edgelessci
5654e76f7e
image: update measurements and image version (#3204) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-27 08:00:56 +02:00
renovate[bot]
5f9e970ebd
deps: update Constellation containers to v2.17.0-pre.0.20240619151941-9cd11842442d (#3179) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-06-24 15:03:21 +02:00
renovate[bot]
e71819eb62
deps: update Go dependencies (#3185) 
* deps: update Go dependencies
* deps: tidy all modules
* Replace deprecated `grpc.DialContext` with `grpc.NewClient`

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-21 10:05:57 +02:00
edgelessci
bd80ab89cb
image: update measurements and image version (#3189) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-21 08:28:27 +02:00
renovate[bot]
afd6b35f18
deps: update ghcr.io/edgelesssys/gcp-guest-agent Docker tag to v20240611 (#3180) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-06-20 13:28:21 +02:00
Daniel Weiße
a36e1a79f0
helm: upgrade cert-manager from v1.12.6 to v1.15.0 (#3177) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-20 10:49:00 +02:00
Daniel Weiße
0368047939
helm: update Azure CSI, GCP CSI, and CSI snapshotter charts (#3175) 
* Update GCP CSI chart to v1.4.0
* Update Azure CSI chart to v1.4.0
* Update CSI snapshotter from v6.2.2 to v8.0.1

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-20 08:41:46 +02:00
Markus Rudy
c911eb4e3a
versions: default to k8s v1.29, support k8s v1.30, EOL v1.27 (#3173) 
* versions: remove k8s 1.27 and patch-upgrade the others

* versions: add support for k8s 1.30.2

* versions: upgrade cloud provider images
 2024-06-19 17:34:34 +02:00
edgelessci
1975a10721
image: update measurements and image version (#3172) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-19 08:26:57 +02:00
edgelessci
63dc0c79af
image: update measurements and image version (#3167) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-14 08:14:39 +02:00
Daniel Weiße
daaa7755a7
cli: enable JSON output for constellation verify on Azure TDX (#3164) 
* Remove formatter factory
* Enable `constellation verify` with JSON output for Azure TDX

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-12 13:18:27 +02:00
edgelessci
305bc692e9
image: update measurements and image version (#3162) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-12 08:03:25 +02:00
Daniel Weiße
8b76dd68ca
attetstation: enable Azure TDX CRL checking (#3160) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-06-12 08:02:47 +02:00
Markus Rudy
fddad83eb4
helm: upgrade Cilium to v1.15.5-edg.1 (#3149) 2024-06-11 11:53:00 +02:00
renovate[bot]
85c4f9be2a
deps: update ghcr.io/edgelesssys/gcp-guest-agent Docker tag to v20240528 (#3143) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-06-09 11:05:02 +02:00
Moritz Sanft
095a66fb83
cli: return a more helpful error message on MAA patch failure (#3153) 
* cli: return a more helpful error message on maa patch failure

* Update internal/maa/patch.go

Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>

---------

Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
 2024-06-07 15:18:34 +02:00
edgelessci
2c03a16a68
image: update measurements and image version (#3151) 
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
 2024-06-07 07:59:55 +02:00
Moritz Sanft
1b7b80673c
image: update measurements and image version (#3144) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-06-05 09:22:32 +02:00
Markus Rudy
5a100d1fc9
helm: use Cilium chart from fork (#3130) 2024-06-05 07:56:11 +02:00
renovate[bot]
aa910cfc25
deps: update Kubernetes versions (#3102) 
* deps: update Kubernetes versions

* deps: tidy all modules

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>
 2024-06-03 15:08:09 +02:00
renovate[bot]
93cabbe0b2
deps: update Constellation containers to v2.17.0-pre.0.20240524110423-80917921e3d6 (#3106) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-06-03 13:13:48 +02:00
edgelessci
ce3b00668b
image: update measurements and image version (#3131) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-06-03 08:53:59 +02:00
edgelessci
79d3781f3e
image: update measurements and image version (#3128) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-05-29 08:18:27 +02:00
Moritz Sanft
d14ee6ba1d
helm: update AWS CSI driver chart (#3121) 2024-05-27 16:22:56 +02:00
edgelessci
be3f555573
image: update measurements and image version (#3119) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-05-24 08:08:42 +02:00
Malte Poll
2c8a16294e bazel: migrate rules_proto to bzlmod 2024-05-23 09:48:04 +02:00
Malte Poll
d960121cba bazel: update BUILD files for rules_go bzlmod migration 2024-05-23 09:48:04 +02:00
edgelessci
4434a85a51
image: update measurements and image version (#3110) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-05-17 08:12:51 +02:00
Daniel Weiße
036a4f2ee1
deps: remove obsolete Go replace to upgrade go-sev-guest (#3107) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2024-05-16 15:48:44 +02:00
renovate[bot]
fe65a6da76 deps: update Constellation containers 2024-05-16 13:11:53 +02:00
Malte Poll
7eedd0e3de
cli: simplify log message on init call (#3105) 2024-05-15 16:17:12 +02:00
edgelessci
36141b149c
image: update measurements and image version (#3100) 
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
 2024-05-15 09:36:01 +02:00