Nils Hanke
68092f27dd
AB#2046 : Add option to create SSH users for the first coordinator upon initialization ( #133 )
...
* Move `file`, `ssh` and `user` packages to internal
* Rename `SSHKey` to `(ssh.)UserKey`
* Rename KeyValue / Publickey to PublicKey
* Rename SSH key file from "debugd" to "ssh-keys"
* Add CreateSSHUsers function to Core
* Call CreateSSHUsers users on first control-plane node, when defined in config
Tests:
* Make StubUserCreator add entries to /etc/passwd
* Add NewLinuxUserManagerFake for unit tests
* Add unit tests & adjust existing ones to changes
2022-05-16 17:32:00 +02:00
Fabian Kammel
5dc2e71d80
generate constellation config in e2e pipeline ( #147 )
2022-05-16 16:44:53 +02:00
Malte Poll
baa7dbc1ef
Move debugd config to separate file
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-16 15:20:23 +02:00
Nils Hanke
25b0ca2a06
Use filename from input instead of hardcoded name
2022-05-16 15:15:05 +02:00
Malte Poll
3b30291360
QEMU CSP Config: PCRs -> Measurements
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-13 13:36:03 +02:00
Malte Poll
c679526bae
Remove ConstellationPort from config file
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-13 13:36:03 +02:00
Fabian Kammel
83857b142c
AB#2064 Feat/config/dev config to config ( #139 )
...
Renamed dev-config to config, additionally changed cdbg config to yaml.
2022-05-13 11:56:43 +02:00
Thomas Tendyck
fde7304d78
Update validargs.go
2022-05-13 11:43:48 +02:00
Daniel Weiße
9c5590bbce
Add LUKS2 header size constant ( #140 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-13 09:24:54 +02:00
Moritz Eckert
5ad34e0425
Apply CIS benchmark to kubelet conf
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
Co-authored-by: Moritz Eckert <me@edgeless.systems>
2022-05-12 17:25:45 +02:00
Moritz Eckert
adda637609
Apply CIS benchmark for kubeadm clusterconf
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-12 17:25:45 +02:00
Malte Poll
1d69ed5cd8
CoreOS build pipeline: Cleanup azure disk and image after converting to SIG ( #137 )
2022-05-12 17:16:57 +02:00
Fabian Kammel
094a8b7659
Feat/config/generate ( #136 )
...
Implement config command & generate verb to write default configuration to file or stdout.
2022-05-12 15:14:52 +02:00
Malte Poll
49ee05b680
debugd README: lowercase firewall rules ( #138 )
2022-05-12 14:21:22 +02:00
Daniel Weiße
437de8bcb1
Add function to retrieve real device path of mapped device
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-12 13:53:39 +02:00
Daniel Weiße
f8c9c0f17f
Fix static check
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-12 13:53:39 +02:00
Daniel Weiße
61afce37fd
Clean up interface
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-12 13:53:39 +02:00
Daniel Weiße
6b3d45dd09
Add resize functions
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-12 13:53:39 +02:00
Daniel Weiße
2b80341d99
Reorder to be more readable
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-12 13:53:39 +02:00
Fabian Kammel
14103e4f89
Fix/config/measurements in yaml ( #135 )
...
Custom type & marshal implementation for measurements to write base64 instead of single bytes
2022-05-12 10:15:00 +02:00
Malte Poll
19394e5563
Fix case sensitive YAML keys in debugd config ( #134 )
...
Fix case sensitive YAML keys in debugd config
Co-authored-by: Fabian Kammel <fabian@kammel.dev>
2022-05-11 16:06:40 +02:00
Fabian Kammel
b8d1cc2b75
converted config file from JSON to YAML. ( #132 )
...
converted config file from JSON to YAML
2022-05-11 13:53:02 +02:00
Malte Poll
eb9a959353
Document k8s upgrade procedure
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
2022-05-11 10:02:41 +02:00
Thomas Tendyck
d76703061b
cli: add minimal doc generator ( #129 )
...
* cli: add minimal doc generator
* fixup! cli: add
2022-05-11 09:20:37 +02:00
Malte Poll
2fc9129b9f
Fix typo in image creation
2022-05-10 15:45:34 +02:00
Malte Poll
4ea00ac684
Update debugd README to incorporate new image location
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-10 13:58:10 +02:00
Malte Poll
1101b5f60f
Document customer onboarding (images -> customer)
...
Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-10 13:58:10 +02:00
Malte Poll
748eb0f96b
Create GCP images in "constellation-images" project
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-10 13:58:10 +02:00
Thomas Tendyck
9575d01ed3
cli: sort CSPs in create cmd
2022-05-10 13:53:57 +02:00
Thomas Tendyck
69d0ecd26d
cli: show instance types on help and usage
2022-05-10 12:59:42 +02:00
cm
c63d7126e7
AB#1943 Extract KMS package ( #56 )
...
* Extract kmsapi from coordinator
* Add kmsapi cmd server
2022-05-10 12:35:17 +02:00
Nils Hanke
2a6b1e2277
Display usage when args are defined in an invalid way
2022-05-10 12:33:49 +02:00
Nils Hanke
4459766b58
Set defaults to 0
2022-05-10 12:33:49 +02:00
Thomas Tendyck
bbfd84729d
cli: minor wording tweaks
2022-05-09 17:16:36 +02:00
Thomas Tendyck
1872d52a49
cli: add default value to master-secret flag in recover
2022-05-09 16:54:17 +02:00
Thomas Tendyck
19bd097864
cli: format UI strings as suggested by cobra
2022-05-09 16:54:17 +02:00
Fabian Kammel
a879043f03
E2E Test CronJob ( #117 )
...
refactor e2e test into reusable action, so we can have manual & cron jobs. added cron for azure & gcp. failed jobs are reported to MS Teams.
2022-05-09 09:45:59 +02:00
Daniel Weiße
a953df60b6
Rename in config: PCRs->Measurements
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-09 08:24:21 +02:00
Thomas Tendyck
3318126363
cli: unify verify/recover endpoint flag
2022-05-08 16:45:20 +02:00
Malte Poll
c9226de9ab
Create kubernetes join token on demand
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-06 12:12:44 +02:00
Malte Poll
ddcb4dc95f
Pin kubernetes version deployed by kubeadm init
...
Signed-off-by: Malte Poll <mp@edgeless.systems>
2022-05-05 09:15:41 +02:00
katexochen
7614c53142
Remove checks for leaking flushDaemon
2022-05-04 17:16:40 +02:00
katexochen
d83bc8727b
Replace k8s.io/klog with k8s.io/klog/v2
2022-05-04 17:16:40 +02:00
katexochen
d6eee42436
Bump k8s.io from v1.23.5 to v1.24.0
2022-05-04 17:16:40 +02:00
katexochen
6a582a705f
Update e2e test regarding CLI changes
2022-05-04 17:14:03 +02:00
katexochen
0e63ee0c4a
Use 'Constellation cluster' in UI
2022-05-04 17:14:03 +02:00
katexochen
1189078c5a
Replace mutiple args with flags
...
AB#1955
2022-05-04 17:14:03 +02:00
katexochen
469b2ff46c
Rename to contol plane/workers
...
AB#1954
2022-05-04 17:14:03 +02:00
Fabian Kammel
f8f5d20f5b
E2E tests on Azure ( #109 )
2022-05-04 13:52:27 +02:00
Daniel Weiße
8444d5c515
Add qemu cloudprovider for activation calls
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-05-04 08:57:43 +02:00