Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-12-26 16:09:45 -05:00
Code Issues Packages Projects Releases Wiki Activity
979 Commits 137 Branches 49 Tags 92 MiB
def598a154
Commit Graph

229 Commits

Author SHA1 Message Date
Nils Hanke
4898f06421 Delete downloaded rekor-cli binary 2022-09-14 03:01:09 -07:00
Nils Hanke
9da3078445 Set working-directory to build for rekor-cli download 2022-09-14 03:01:09 -07:00
Thomas Tendyck
45ee84965f tidy link checking 2022-09-14 11:23:17 +02:00
Nils Hanke
82d9263d86 Add generate measurements step to release documentation 2022-09-14 01:22:18 -07:00
Nils Hanke
79229e04df Create seperate create measurement action 2022-09-14 01:22:18 -07:00
Nils Hanke
9f246d3cc6 E2E: Don't sign & measure E2E built CLI binaries 2022-09-14 01:22:18 -07:00
Nils Hanke
472ba642b7 E2E: Build OSS CLI by default 2022-09-14 01:22:18 -07:00
katexochen
ebd9472866 Use go.work for CI workflows 2022-09-13 15:58:38 +02:00
katexochen
f55524a8d3 Run golangci-lint for all submodules 2022-09-13 15:58:38 +02:00
Felix Schuster
eb213878a2
Re-wording in docs/workflows (#135) 
* Quick pass over create.md

* pass over verify.md

* Re-arrange workflows

* Quick polish of scale.md and upgrade.md

* Quick polish of terminate.md

* Cut recovery.md down

* Brush over ssh

* storage

* Brush over trusted launch VMs

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* Add Azure back to title

* Update docs/docs/workflows/verify-cluster.md

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>

* fix lint errors

* publish to 2.0

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
 2022-09-13 15:12:05 +02:00
Otto Bittner
c7f39388e4 Update verification dev docs to reference new tool 2022-09-13 14:58:21 +02:00
Leonard Cohnen
a318a82968 fix e2e latest debug image selection 2022-09-13 10:08:51 +02:00
Leonard Cohnen
c1427123d9 fix azure release image naming 2022-09-12 19:03:01 +02:00
Felix Schuster
ebb8d7ca96
Rewrite install.md and create verify-cli.md (#124) 
* Rewrite install.md and create verify-cli

* Small beautification

* Address review comment

* Shorten examples.md

* Quick brush over examples

* Fix broken links in v2.0

* Fix broken links in v2.0

* fix lint errors

Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
 2022-09-12 18:35:12 +02:00
Thomas Tendyck
0952435e25 fix some doc links 2022-09-12 13:09:55 +02:00
Thomas Tendyck
5cd69d4aee
promote issues as support channel (#123) 
* promote issues as support channel

* add question issue template
 2022-09-12 13:01:50 +02:00
dependabot[bot]
a527a88586
Bump azure/login from 1.4.5 to 1.4.6 (#125) 2022-09-12 06:17:39 +00:00
Nils Hanke
0949393dbb Update build environment to Fedora 36 & Go 1.19.1 2022-09-09 18:11:33 +02:00
Nils Hanke
5684b9f607 Add updating CMakeLists.txt to release docs 2022-09-09 15:33:16 +02:00
Nils Hanke
9bedaf20ea Use CMake project version across all places & remove obsolete build tags 2022-09-09 15:33:16 +02:00
Malte Poll
aa75a065d7
e2e test: wait for specified amount of nodes to join the cluster and become ready (#87) 
Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>
 2022-09-09 13:28:53 +02:00
Nils Hanke
56accc7766 CI: Simplify "Generate reference docs" step 2022-09-09 11:24:59 +02:00
Nils Hanke
9a560847f7 CI: Remove obsolete checkout for old docs repo 2022-09-09 11:24:59 +02:00
Nils Hanke
9c8ba7b153 CI: Trigger CLI action on cli/cmd & cli/internal/cmd changes 2022-09-09 11:24:59 +02:00
Moritz Eckert
653b01499d
Pin docs actions to sha (#105) 2022-09-09 09:51:42 +02:00
Moritz Eckert
cdc9eb5c36
Add docs to release process (#104) 2022-09-09 08:04:34 +02:00
Otto Bittner
ef26917c5e AB#2369: Use contributing.md as ToC for dev docs. 
* Structure content into typical sections and
split into separate files.
* Also document how to locally create measurements

Signed-off-by: Otto Bittner <cobittner@posteo.net>
 2022-09-08 16:08:42 +02:00
Nils Hanke
46c461c23e E2E: Don't use cloudProvider in constellation create 2022-09-08 13:38:24 +02:00
Fabian Kammel
e3ede64ae6
Document trusted launch on Azure (#48) 
* Document trusted launch usage for Azure

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* there is no valid link because there is no valid release yet

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* fix link

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* fix linter issues

Signed-off-by: Fabian Kammel <fk@edgeless.systems>

* improve

* importAzure.sh: print final image ID

Signed-off-by: Fabian Kammel <fk@edgeless.systems>
Co-authored-by: Thomas Tendyck <tt@edgeless.systems>
 2022-09-07 15:05:24 +02:00
Nils Hanke
dd4ccdd390 E2E / debugd: Replace remains of ingressFirewall with debugCluster flag 2022-09-07 13:27:15 +02:00
Fabian Kammel
020cf51fc6
AB#2392 Store serial logs in actions (#39) 
Co-authored-by: Fabian Kammel <fk@edgeless.systems>
 2022-09-05 18:12:46 +02:00
Malte Poll
bd6c6ce836 e2e-tests: include k8s 1.25 2022-09-05 16:57:28 +02:00
Malte Poll
f3b9d0402b Update Kubernetes version support docs 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-09-05 16:57:28 +02:00
Thomas Tendyck
a09c53a700
tidy link checking (#63) 
* tidy link checking

* Update .github/docs/release.md

Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>

Co-authored-by: Nils Hanke <Nirusu@users.noreply.github.com>
 2022-09-05 16:08:00 +02:00
Malte Poll
1c1b29637f e2e-test gcp: Fix quoting in gcp config rewrite 2022-09-05 12:13:24 +02:00
Malte Poll
3c0e2239d2 e2e-test azure: ignore unused parameter 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-09-05 12:13:24 +02:00
Nils Hanke
b6385ad3bc Move serviceAccountKey.json creation before create 
The printed config does not contain the path
since it's printed before injection, so let's inject it before.
 2022-09-05 12:13:24 +02:00
katexochen
1741c2d941 e2e: Fix machine type 2022-09-05 12:13:24 +02:00
katexochen
d0a3c2d3d1 e2e: Fix reintroduced Azure error 2022-09-05 12:13:24 +02:00
Malte Poll
45a1134915
Change default branch of constellation-fedora-coreos-config repo (#72) 2022-09-05 12:12:34 +02:00
Thomas Tendyck
b9db172fcf Update pull_request_template.md 2022-09-05 11:10:40 +02:00
Nils Hanke
3c7d76f5a6 Run link checker only when Markdown & HTML files have been changed 2022-09-05 10:36:14 +02:00
Thomas Tendyck
95ff987bfc add license 2022-09-05 09:17:25 +02:00
Malte Poll
e24808e936
e2e: Write service account key path for GCP (#67) 
Signed-off-by: Malte Poll <mp@edgeless.systems>
 2022-09-05 09:17:18 +02:00
Thomas Tendyck
517302e4dc limit workflows to paths or filetypes 2022-09-05 08:51:36 +02:00
katexochen
43924c7318 e2e: Silence curl 2022-09-02 19:08:33 +02:00
katexochen
9076404b06 Fix manual e2e test 2022-09-02 19:08:33 +02:00
Malte Poll
bdb57387c7
Update pull_request_template.md (#57) 2022-09-02 17:17:44 +02:00
Fabian Kammel
2f871578b2
first implementation of SBOM generation (#50) 
* first implementation of SBOM generation
* updated dependencies as per grype report
* hack: go mod tidy
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-09-02 16:49:59 +02:00
Nils Hanke
39eb58b403 E2E: Use default VM machine type when not overriden 2022-09-02 07:04:11 -07:00
Nils Hanke
710ded2a89 E2E: Insert instanceType to config instead of CLI 2022-09-02 07:04:11 -07:00
katexochen
b256222b42 e2e: Use default shell parameters 2022-09-02 15:20:25 +02:00
katexochen
0c5c11e8b7 e2e: Group log lines 2022-09-02 15:20:25 +02:00
katexochen
ef8130a918 e2e: Enable parallel runs on Azure 2022-09-02 15:20:25 +02:00
katexochen
3c123d9fec e2e: Fix cleanup on error/cancel 2022-09-02 15:20:25 +02:00
katexochen
90b4067523 e2e: Run tests on GitHub instead of local runner 2022-09-02 15:20:25 +02:00
Thomas Tendyck
e2325534f1 Update release.md 2022-09-02 12:27:29 +02:00
Moritz Eckert
b95f3dbc91
Add docs to repo (#38) 2022-09-02 11:52:42 +02:00
Moritz Eckert
db942ee4b5
Update references to docs (#36) 2022-09-01 09:27:25 +02:00
Otto Bittner
276165064e Ensure no uid values end up in resource delete cmd 2022-08-31 16:38:32 +02:00
katexochen
84b4519ffd Add cleanup pre e2e test on Azure 2022-08-31 14:10:08 +02:00
katexochen
7c7a4699bc Azure e2e tests with manual creds 2022-08-31 14:10:08 +02:00
Daniel Weiße
f38f85b3bf
Run binary builds in parallel (#28) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2022-08-31 12:37:18 +02:00
Nils Hanke
fc10b3419d
Build release CLI for Linux arm64 (#29) 2022-08-31 12:27:26 +02:00
Nils Hanke
93db978240 Use absolute link to CHANGELOG.md in template 2022-08-31 03:25:50 -07:00
Nils Hanke
1ecc56b69f
Remove cdbg-config.yaml (#26) 
This removes systemd service upload support in cdbg,
but keeps it in the protobuf protocol.
 2022-08-31 12:25:27 +02:00
Daniel Weiße
b27e205399
Use 4 vCPU instances by default (#24) 
* Use 4 vcpu instances by default

* Remove 2 vcpu instance type option

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
 2022-08-31 10:33:33 +02:00
Fabian Kammel
66d8c8037b
Release/v0.0.1 (#20) 
* bump images to 0.0.1
* add gh cli commands
* varibale with default value should not be required
* update release docs
* build and upload version manifest as part of release
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-30 15:54:35 +02:00
Fabian Kammel
778952e07c
AB#2287 support community image IDs (#9) 
* support community image IDs
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-30 15:15:51 +02:00
Nils Hanke
87e68961dd Add GCP ServiceAccount to E2E test 2022-08-30 04:26:21 -07:00
Nils Hanke
89e3acf6a1 Fix link to CHANGELOG.md in PR template 2022-08-29 04:40:49 -07:00
Nils Hanke
a8cc8a5859 Disable golangci-lint cache 2022-08-29 02:25:04 -07:00
Fabian Kammel
d972f053f9 AB#2287 Public image sharing in Azure (#350) 
Trusted launch VM images in original SIG, additional SIG for community images for CVM
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-26 17:34:46 +02:00
Fabian Kammel
45beec15f5 AB#2360 enterprise build tag (#397) 
* enterprise build switch to disable license checking in default (OSS) version
* remove community license quota
* empty image references on OSS build in config
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-25 14:06:29 +02:00
Paul Meyer
904ea06214 Update golangci-lint workflow (#396) 2022-08-24 14:55:55 +02:00
dependabot[bot]
a07e3bfaf4 Bump actions/setup-go from 3.2.1 to 3.3.0 (#399) 2022-08-24 09:59:35 +00:00
Fabian Kammel
779a73a03d Add sed back to gcp image commmand (#392) 
Signed-off-by: Fabian Kammel <fk@edgeless.systems>

Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-23 16:47:51 +02:00
Moritz Eckert
94460654e7 Apply feedback for readme (#389) 
Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
 2022-08-23 13:46:06 +02:00
Fabian Kammel
33626986fe Feat/cli multi os arch (#390) 
* Implement multi arch/os pipeline
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-23 13:43:20 +02:00
Malte Poll
cdcbed6ff9 Re-add build-cli workflow 2022-08-19 18:29:10 +02:00
Malte Poll
f16e4bd5f9 e2e test manual: upload measurements 2022-08-19 18:22:55 +02:00
Malte Poll
f7cc72215e manual e2e test: allow parallel runs 2022-08-19 18:22:55 +02:00
Malte Poll
e841d9201b Use Azure CVMs in e2e tests 2022-08-19 18:22:55 +02:00
Malte Poll
2d87db3914 Update pseudo-version script to determine future release version based on branch name 2022-08-19 18:22:55 +02:00
Malte Poll
92e4e4d95a manual operator pipeline (#383) 2022-08-19 15:19:08 +02:00
Malte Poll
8d642be204 Azure: switch default region to west us and replicate images to multiple regions 2022-08-19 14:39:36 +02:00
Fabian Kammel
4176f038df Generate CLI reference also for sub-commands (#374) 
* include all subcommands
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-17 16:58:36 +02:00
Malte Poll
abb4fb4f0f Build GCP guest agent from github actions in constellation repo 2022-08-16 08:47:58 +02:00
Otto Bittner
aee432ed6f Fix syntax in yq command 
Fixes syntax error in 4db5ea3b164e8e762693035cb06d643f711a3d39
 2022-08-15 11:41:48 +02:00
Fabian Kammel
97c985a7f4 provide commands for all new image schemas (#363) 
* provide commands for all new image schemas
Signed-off-by: Fabian Kammel <fk@edgeless.systems>
 2022-08-15 11:09:10 +02:00
Otto Bittner
3018bfa03e Add enforcedMeasurements default value to config 
A previous change started enforcing PCR values.
This makes it necessary to update the respective config
values before running init.
 2022-08-15 09:37:18 +02:00
3u13r
9478303f80 deploy cilium via helmchart (#321) 2022-08-12 10:20:19 +02:00
Otto Bittner
2f925b5955 Add clone3-workaround to bootstrapper build container 
The previously encountered error about misconfigured seccomp
filters is mitigated with the workaround added in this commit.
See the repo in the comment for detailed information on
the bug itself.
 2022-08-10 17:17:23 +02:00
Otto Bittner
919a2165ae Run e2e test container on edgserver with privileged 
The seccomp filter applied by docker presumably
stops curl from working correctly as the glibc changed the
way it creates processes (switch from clone to clone3).
The backwards compatibility layer of glibc does not work
correctly with docker's seccomp filter, making it necessary to
give the container privileged access.
 2022-08-10 09:58:43 +02:00
Otto Bittner
c42e79ecfe AB#2281: Run e2e tests on latest debug image (#354) 
* e2e tests now execute on the latest debug image available by default
* e2e-manual workflow now takes an optional image reference to run on
* isDebugImage is a flag that has to be set in case
you are running a debug image
 2022-08-09 15:29:39 +02:00
Malte Poll
aee3f2afa2 Run tests for different projects in parallel 2022-08-09 10:29:04 +02:00
Malte Poll
1df2a20a36 CI: build and upload node operator 2022-08-09 10:29:04 +02:00
Otto Bittner
1b9600c307 AB#2266: Test all supported version with e2e-tests 
* e2e-test workflows execute two hours earlier.
* Run quick-mode e2e tests for the two older versions we support.
This triggers every night, together with the existing e2e tests.
Idea here is that we know that a cluster can be setup and initialized.
* Run full e2e tests for the two older versions each sunday.
* Do not abort manual e2e runs. This allows for parallel runs.
* Run unprivileged container
 2022-08-09 10:02:15 +02:00
Daniel Weiße
c52bfc79d3 Set default values for e2e-pipeline (#351) 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>

Co-authored-by: Fabian Kammel <fabian@kammel.dev>
 2022-08-09 08:20:23 +02:00
dependabot[bot]
2e71e6c740 Bump docker/build-push-action from 3.1.0 to 3.1.1 (#348) 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](1cb9d22b93...c84f382811)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-08-08 15:39:00 +02:00