Commit Graph

279 Commits

Author SHA1 Message Date
Fabian Kammel
f3e9a83000
improve wording (#677)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>

Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-11-30 12:41:07 +01:00
Thomas Tendyck
21529d0e9e don't promote Trusted Launch for now 2022-11-30 12:24:37 +01:00
Daniel Weiße
6bd62f0f7a
Update docs to new measurement format (#660)
* Remove fetch-measurements from create workflow

* Explain new measurements format in docs

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-11-30 08:29:17 +01:00
Fabian Kammel
cf49f7d755
Document SLSA adoption and current level (#661)
* Document SLSA adoption and current level
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
2022-11-29 12:56:28 +01:00
Moritz Eckert
bffa5c580c
Fix components diagram (#659) 2022-11-28 15:30:46 +01:00
Fabian Kammel
c71fd89e80
Provenance for CLI (#647)
* provenance generation for cli
* document provenance generation for CLI
* include CLI SBOM in provenance
Co-authored-by: 3u13r <lc@edgeless.systems>
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-11-25 16:13:20 +01:00
Nils Hanke
878d66dcda
Remove SSHUsers and UserKey from config v2 (#650)
* Remove SSHUsers and UserKey as part of configVersion v2

* Add migration nodes to docs

* Update CHANGELOG.md
2022-11-25 15:27:34 +01:00
Malte Poll
8d9254e050 Docs: document breaking changes in the config file 2022-11-23 15:47:46 +01:00
github-actions[bot]
d8463e984b
Update CLI reference (#613)
* CLI reference was updated by edgelesssys/constellation@9f64fdad
* CLI reference was updated by edgelesssys/constellation@1f9b6ba9
Co-authored-by: daniel-weisse <daniel-weisse@users.noreply.github.com>
2022-11-22 10:06:22 +01:00
Daniel Weiße
b915d03487
AB#2615 Update docs to new CSI installation method (#606)
* Update docs to new CSI installation method

* Fix invalid volume expansion option

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com>
2022-11-22 09:36:08 +01:00
Malte Poll
74aabe86fa Move PCR[8] -> PCR[12] 2022-11-18 10:37:45 +01:00
Nils Hanke
4a2cba988c Create separate Terraform workspace directory 2022-11-17 13:49:34 +01:00
Fabian Kammel
bb76a4e4c8
AB#2512 Config secrets via env var & config refactoring (#544)
* refactor measurements to use consistent types and less byte pushing
* refactor: only rely on a single multierr dependency
* extend config creation with envar support
* document changes
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-11-15 15:40:49 +01:00
leongross
366b7ffed4
AB#2606 add default 'EnforcedMeasurements' for AWSConfig, add aws tab… (#471)
* AB#2606 add AWS to attestation documentation
2022-11-14 12:48:17 +01:00
Thomas Tendyck
cf82794b1d docs: publish access manager removal 2022-11-14 10:42:30 +01:00
Fabian Kammel
b92b3772ca
Remove access manager (#470)
* remove access manager from code base
* document new node ssh workflow
* keep config backwards compatible
* slow down link checking to prevent http 429
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-11-11 08:44:36 +01:00
Thomas Tendyck
4f710528bc docs: publish 2022-11-09 16:30:05 +01:00
Thomas Tendyck
01fbfeebb9 docs: misc fixes and rewording 2022-11-09 16:30:05 +01:00
Fabian Kammel
2b64f31104
release docs for v2.2 (#482)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-11-08 18:25:56 +01:00
Fabian Kammel
598761541b
AWS Docs (#446)
* document AWS support
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com>
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
2022-11-08 18:21:09 +01:00
Leonard Cohnen
f09ce515e2 docs: remove constellation-state.json 2022-11-07 19:09:24 +01:00
Otto Bittner
a70161730f
Explain unenforced measurements in config (#445) 2022-11-07 08:56:57 +01:00
Moritz Eckert
69644add5d
Add plausbile to docusaurus (#456) 2022-11-04 14:15:34 +01:00
Nirusu
ad15c7f84d CLI reference was updated by edgelesssys/constellation@8f3076e7 2022-11-02 18:22:05 +01:00
Nils Hanke
8f3076e74e Fix Vale complaints 2022-11-02 18:18:30 +01:00
Nils Hanke
141fa3f593 Document termination prompt 2022-11-02 18:18:30 +01:00
Fabian Kammel
18ae86c38e
sbom signing (#303)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-10-21 15:19:51 +02:00
Malte Poll
a901759725 docs: Updates for transition CoreOS -> mkosi / Fedora 2022-10-21 11:04:25 +02:00
Daniel Weiße
e5aaf0a42f Add hint about problematic iptables rules to minic11n requirements
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-10-21 09:35:39 +02:00
daniel-weisse
6cf5003321 CLI reference was updated by edgelesssys/constellation@085f7b1a 2022-10-21 08:29:24 +02:00
Christoph Meyer
cd557e33fc AB#2493 Recreate benchmark graphs in edgeless colors 2022-10-19 18:53:43 +02:00
Felix Schuster
c4d8fa54a6
Brush over MiniConstellation in docs and README (#285)
* Pass over mini-constellation
* Update version 2.1
* Update README
2022-10-17 16:41:56 +02:00
Thomas Tendyck
bd6accbc01 publish doc changes 2022-10-17 08:33:53 +02:00
Daniel Weiße
f068e50dee
Attestation logging (#275)
* Add section for checking joinservice logs

* Add logging for attestation validation

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-10-14 16:29:21 +02:00
github-actions[bot]
74c3c93dec
Update CLI reference (#248)
Co-authored-by: katexochen <49727155+katexochen@users.noreply.github.com>
2022-10-14 10:48:20 +02:00
Moritz Eckert
c7010f76ca
Update wording for MiniConstellation in docs (#241) 2022-10-13 11:29:56 +02:00
Fabian Kammel
50cff97ec5
improve wording in title (#239)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>

Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-10-13 08:58:06 +02:00
Thomas Tendyck
76e9d7c5ac docs: mini-constellation: fix typos and simplify some sentences 2022-10-10 09:34:32 +02:00
Thomas Tendyck
9db71a41de docs: publish to 2.1 2022-10-10 09:29:50 +02:00
Thomas Tendyck
7003a86363 docs: publish to 2.0 2022-10-10 09:29:50 +02:00
Thomas Tendyck
617a55a230 docs: fixes and rewording of architecture 2022-10-10 09:29:50 +02:00
Paul Meyer
fd63ca1251
Release docs for v2.1 (#222) 2022-10-07 12:14:55 +02:00
Daniel Weiße
7f96b82288
Wrap references to mini Constellation in tip boxes (#221)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-10-07 10:16:25 +02:00
github-actions[bot]
ff25593f7e
CLI reference was updated by edgelesssys/constellation@0edae36e (#220)
Co-authored-by: daniel-weisse <daniel-weisse@users.noreply.github.com>
2022-10-07 09:44:41 +02:00
Daniel Weiße
e1059aceac
AB#2425 Constellation mini docs (#214)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-10-07 09:42:14 +02:00
Christoph Meyer
8d4c1c389e AB#2377 Repeat benchmarks on CVMs 2022-10-06 15:04:26 +02:00
Thomas Tendyck
27e8604a9b docs: publish to 2.0 2022-09-28 16:33:04 +02:00
Thomas Tendyck
c7e8fe0bd6 docs: fixes and rewording of workflows 2022-09-28 16:33:04 +02:00
github-actions[bot]
91655e1bcb
CLI reference was updated by edgelesssys/constellation@804c173d (#196)
Co-authored-by: daniel-weisse <daniel-weisse@users.noreply.github.com>
2022-09-26 16:03:01 +02:00
Felix Schuster
2b32b79026
Rewording in "Getting started" (#193)
* Small changes

* Update docs/docs/getting-started/first-steps.md

Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>

* Update docs/docs/getting-started/first-steps.md

Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>

* Update docs/versioned_docs/version-2.0/getting-started/first-steps.md

Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>

Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>
2022-09-26 15:19:09 +02:00
github-actions[bot]
9f0a18cbe2
CLI reference was updated by edgelesssys/constellation@30f05541 (#194)
Co-authored-by: daniel-weisse <daniel-weisse@users.noreply.github.com>
2022-09-26 10:22:00 +02:00
Daniel Weiße
30f0554168
AB#2262 Automatic recovery (#158)
* Update `constellation recover` to be fully automated

* Update recovery docs

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-09-26 09:57:40 +02:00
Felix Schuster
4f596cde3c
Extend community license (#186) 2022-09-22 12:12:17 +02:00
Thomas Tendyck
811ccc80a3
docs: clarify permissions on install page (#184)
* docs: clarify permissions on install page

* docs: remove default attribute from tabs

* docs: publish to 2.0
2022-09-21 16:58:04 +02:00
Nils Hanke
029e6783a3 Add link where to download CLI signatures 2022-09-21 15:07:36 +02:00
Nils Hanke
38d042db71 Provide CLI commands to install the CLI 2022-09-21 15:07:36 +02:00
Thomas Tendyck
a283f96b87 docs: minor wording fixes in overview pages 2022-09-20 19:00:15 +02:00
katexochen
6293575172 CLI reference was updated by edgelesssys/constellation@788cfd9b 2022-09-20 14:40:45 +02:00
katexochen
bcab213139 Document cluster based autoscaling 2022-09-20 13:41:23 +02:00
3u13r
67d9be38d7 CLI reference was updated by edgelesssys/constellation@774e300a 2022-09-20 13:07:48 +02:00
Thomas Tendyck
bff4351839 docs: reword examples 2022-09-19 10:36:54 +02:00
Thomas Tendyck
7b7c4b3246 docs: fix CLI reference heading 2022-09-16 15:57:50 +02:00
Thomas Tendyck
72d5aa7558 docs: fix command in trusted launch workflow and add fetch-measurements 2022-09-14 18:26:41 +02:00
Nils Hanke
c6a6d7ffe4
Recude speed for asciicinema (#150) 2022-09-14 15:28:33 +02:00
Thomas Tendyck
d861f7b519
docs: minor fixes in first steps and wording improvements (#155)
* docs: minor fixes in first steps and wording improvements

* publish to 2.0
2022-09-14 14:40:41 +02:00
Leonard Cohnen
a5e82fcb0e remove sample config in docs 2022-09-14 12:09:34 +02:00
Felix Schuster
eb213878a2
Re-wording in docs/workflows (#135)
* Quick pass over create.md

* pass over verify.md

* Re-arrange workflows

* Quick polish of scale.md and upgrade.md

* Quick polish of terminate.md

* Cut recovery.md down

* Brush over ssh

* storage

* Brush over trusted launch VMs

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* Add Azure back to title

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* fix lint errors

* publish to 2.0

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
2022-09-13 15:12:05 +02:00
Felix Schuster
d5d5448935
Overwrite v2.0 in docs (#144) 2022-09-13 12:05:07 +02:00
Felix Schuster
0165a6be43
Brush over first-steps (#137)
Brush over first-steps in docs
2022-09-13 11:48:19 +02:00
Felix Schuster
b972bfa17d
Update concept graphic in README (#136)
* Update concept graphic in README
2022-09-13 11:31:52 +02:00
Thomas Tendyck
7cf80ecc61 docs: fix some code highlightings 2022-09-12 18:52:05 +02:00
Felix Schuster
ebb8d7ca96
Rewrite install.md and create verify-cli.md (#124)
* Rewrite install.md and create verify-cli

* Small beautification

* Address review comment

* Shorten examples.md

* Quick brush over examples

* Fix broken links in v2.0

* Fix broken links in v2.0

* fix lint errors

Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
2022-09-12 18:35:12 +02:00
Nils Hanke
55af5695ed Update asciicinema 2022-09-12 16:27:21 +02:00
Nils Hanke
ae9fe284f7 Directly install CSI drivers from (public) GitHub 2022-09-12 14:00:39 +02:00
github-actions[bot]
fba697144d
Update CLI reference (#126)
* CLI reference was updated by edgelesssys/constellation@d83a5f86

* CLI reference was updated by edgelesssys/constellation@4b36d3a9

Co-authored-by: thomasten <thomasten@users.noreply.github.com>
2022-09-12 13:39:56 +02:00
Thomas Tendyck
0952435e25 fix some doc links 2022-09-12 13:09:55 +02:00
Thomas Tendyck
5cd69d4aee
promote issues as support channel (#123)
* promote issues as support channel

* add question issue template
2022-09-12 13:01:50 +02:00
Moritz Eckert
15592e8f3f
Ref/docs 2.0 (#112) 2022-09-09 17:01:57 +02:00
Nirusu
e0bfdec7ff CLI reference was updated by edgelesssys/constellation@491249fe 2022-09-09 10:31:08 +02:00
Nils Hanke
491249fea6 Sync Azure/GCP tab choice 2022-09-09 10:12:27 +02:00
Moritz Eckert
98ee807247
Change doc fonts to Roboto (#101) 2022-09-08 17:55:32 +02:00
Thomas Tendyck
a85777fd02 enforce pcr4 2022-09-08 17:34:12 +02:00
Nils Hanke
1c63b65af2
Document instanceType in first-steps.md (#59)
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
2022-09-08 15:39:53 +02:00
Daniel Weiße
21397bf98b
Update docs to new recover workflow (#100)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-09-08 14:47:48 +02:00
Malte Poll
a7b20b2a11
Explain replication lag on Azure AD (#99) 2022-09-08 14:11:10 +02:00
Nils Hanke
cf107f5925 Update asciicinema SVG (now with 3x speed) 2022-09-08 13:38:24 +02:00
Nils Hanke
c9c954c675 Remove service provider in CLI commands in docs 2022-09-08 13:38:24 +02:00
Malte Poll
765c097beb
AB#2399 Add GCP service account script (#95) 2022-09-08 09:53:16 +02:00
Daniel Weiße
03148c6706
Add Service Account User as required GCP permission (#91)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-09-08 09:08:29 +02:00
Felix Schuster
0286a83dfa
Re-write Intro/Welcome (#97)
Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com>
2022-09-08 08:43:40 +02:00
Thomas Tendyck
e3c5a5ab78 docs: remove discarded verify feature 2022-09-07 18:16:07 +02:00
Felix Schuster
6aec009aaf
Re-word (#92) 2022-09-07 18:08:13 +02:00
Moritz Eckert
23b9319809
Add search functionality to the docs (#90) 2022-09-07 17:57:45 +02:00
Fabian Kammel
e3ede64ae6
Document trusted launch on Azure (#48)
* Document trusted launch usage for Azure

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* there is no valid link because there is no valid release yet

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* fix link

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* fix linter issues

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* improve

* importAzure.sh: print final image ID

Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
2022-09-07 15:05:24 +02:00
Felix Schuster
35cded6261
Update "Product features" and re-arrange "Confidential Kubernetes" (#81)
Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com>
2022-09-07 09:41:35 +02:00
Malte Poll
ab5f00ba32
Docs: recommend latest version of azure cli (#77)
Prevent users from running az versions < 2.25.0 and experience https://github.com/Azure/azure-cli/issues/19892
2022-09-05 16:46:05 +02:00
Nils Hanke
4bfb98d35a Fix typo in sidebar 2022-09-05 11:10:57 +02:00
Nirusu
76896ac190 CLI reference was updated by edgelesssys/constellation@3c7d76f5 2022-09-05 10:45:03 +02:00
Thomas Tendyck
95ff987bfc add license 2022-09-05 09:17:25 +02:00
Felix Schuster
d06d403d1d
Add page on CSPs (#56)
Co-authored-by: Moritz Eckert <m1gh7ym0@gmail.com>
2022-09-04 22:11:10 +02:00
Fabian Kammel
106635a9ee
Restructure config docs (#44)
* more guided UX when generating and filling in config
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-09-02 17:11:06 +02:00
Nirusu
913711a0fe CLI reference was updated by edgelesssys/constellation@50bde917 2022-09-02 07:18:38 -07:00
Felix Schuster
f733ba5d6e
Update README (#46)
* Update README

* Update images

* Add security policy
2022-09-02 16:10:27 +02:00
Nils Hanke
50bde9173f Remove --instance-type from constellation create in docs 2022-09-02 07:04:11 -07:00
Moritz Eckert
b95f3dbc91
Add docs to repo (#38) 2022-09-02 11:52:42 +02:00
Fabian Kammel
e6ae54a25a
add gh cli commands for release (#30)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-31 14:00:22 +02:00
Daniel Weiße
b27e205399
Use 4 vCPU instances by default (#24)
* Use 4 vcpu instances by default

* Remove 2 vcpu instance type option

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-08-31 10:33:33 +02:00
Fabian Kammel
66d8c8037b
Release/v0.0.1 (#20)
* bump images to 0.0.1
* add gh cli commands
* varibale with default value should not be required
* update release docs
* build and upload version manifest as part of release
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-30 15:54:35 +02:00
Fabian Kammel
778952e07c
AB#2287 support community image IDs (#9)
* support community image IDs
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-30 15:15:51 +02:00
Simon Röckinghausen
a796c7ee69 added constellation shell animation (#405) 2022-08-26 12:59:36 +02:00
Moritz Eckert
94460654e7 Apply feedback for readme (#389)
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
2022-08-23 13:46:06 +02:00
Fabian Kammel
33626986fe Feat/cli multi os arch (#390)
* Implement multi arch/os pipeline
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-23 13:43:20 +02:00
Malte Poll
b8f17c2aa3 Update release docs 2022-08-19 18:22:55 +02:00
Fabian Kammel
9c60150aa4 Have a heart for dark mode users (#385)
* conditionally use dark/light product overview image
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-19 17:31:31 +02:00
Moritz Eckert
38c1b9003c Ref/readme (#375)
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
Co-authored-by: Simon Röckinghausen <s2401r@gmail.com>
2022-08-19 14:54:11 +02:00
Fabian Kammel
6a29dcea9c AB#2323 Update release docs (#367)
* update release docs since release images are no longer build automatically
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-08-17 10:59:10 +02:00
Fabian Kammel
ffc3097c10 [RFC] Secure Software Distribution (#234)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
2022-08-01 16:52:32 +02:00
Daniel Weiße
877fc7a0d2 [RFC] HKDF key derivation and the use of salts (#275)
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-07-20 09:16:13 +02:00
Malte Poll
cce2611e2a Simplify node lock and various small changes
Co-authored-by: Fabian Kammel <fabian@kammel.dev>
Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
2022-07-14 17:25:18 +02:00
katexochen
916e5d6b55 Rename coordinator to bootstrapper and rename roles 2022-07-14 17:25:18 +02:00
katexochen
fc35084379 Move kubernetes package into internal 2022-07-14 17:25:18 +02:00
Fabian Kammel
66eef5bc70 fix version typo (#267)
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-07-12 17:37:36 +02:00
Fabian Kammel
9d3ab0042c Ref/prepare changelog for v1.3.1 (#263)
* prepare changelog.
* document lb fix
* set release version for cli
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: 3u13r <lc@edgeless.systems>
2022-07-11 15:19:56 +02:00
Daniel Weiße
9bab6dbc64 [RFC] Proof of Ownership (#240)
Signed-off-by: daniel-weisse <daniel.weisse@gmx.net>
2022-07-07 11:44:12 +02:00
Fabian Kammel
c2359fa6c8 Fix/release process (#253)
* fix path to artifacts.
* add release step to docs
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2022-07-05 16:55:14 +02:00
Fabian Kammel
95e2c91821 Prepare for v1.3.0 (#242)
Update CHANGELOG.md & versions.
2022-07-05 16:07:15 +02:00
Malte Poll
88ec7397c9 terraform libvirt: document usage
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-25 10:30:58 +02:00
Thomas Tendyck
206dae8fd2 readme: move debugd and local image testing to other files and add a component overview 2022-05-19 08:56:28 +02:00
Malte Poll
eb9a959353 Document k8s upgrade procedure
Signed-off-by: Malte Poll <mp@edgeless.systems>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
2022-05-11 10:02:41 +02:00