Nils Hanke
ee20ff8950
Replace E2E Azure RM credentials with secrets
2022-11-04 12:57:24 +01:00
Nils Hanke
19fd3a351a
Make azureCVMRxp in upgradeplan.go case-insensitive
2022-11-04 12:57:24 +01:00
Nils Hanke
4d9fbdb3d3
CI: Use lowercase image name for fetching measurements
2022-11-04 12:57:24 +01:00
Nils Hanke
a535ca1901
CI: Use lowercase image name for S3 upload
2022-11-04 12:57:24 +01:00
Nils Hanke
af08ffbb16
CI: Add group for building pcr-reader for better output
2022-11-04 12:57:24 +01:00
Nils Hanke
28b2d84684
Add AzureRM authentication environment variables for PCR action
2022-11-04 12:57:24 +01:00
Nils Hanke
3ca88d6043
Fix Constellation measure CI action
2022-11-04 12:57:24 +01:00
Nils Hanke
4e93c1a6c2
Add .idea to .gitignore
2022-11-04 12:57:24 +01:00
renovate[bot]
8e44eb7ea5
Update module github.com/sigstore/rekor to v1 ( #453 )
...
* Update module github.com/sigstore/rekor to v1
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <renovate[bot]@users.noreply.github.com>
2022-11-04 12:45:45 +01:00
3u13r
9ad377284d
Wait for kube api during init ( #440 )
...
* kubernetes: wait for KubeAPI to be reachable
2022-11-04 12:36:26 +01:00
renovate[bot]
b89fae8062
Update Terraform azurerm to v3.30.0 ( #452 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-04 12:34:03 +01:00
renovate[bot]
88110ff5f3
Update github actions dependencies ( #450 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-04 11:58:54 +01:00
renovate[bot]
add245a2f8
Update ubuntu:22.04 Docker digest to 817cfe4 ( #451 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-04 11:58:01 +01:00
renovate[bot]
653a1062e6
Update gcr.io/distroless/static:nonroot Docker digest to ed05c7a ( #449 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-04 11:53:55 +01:00
renovate[bot]
da3fe3de94
Update gcr.io/distroless/static Docker digest to ebd8cc3 ( #448 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-04 11:52:06 +01:00
renovate[bot]
44b1a92d6b
Update fedora Docker digest to 455fec9 ( #447 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
Co-authored-by: Nirusu <Nirusu@users.noreply.github.com>
2022-11-04 11:49:41 +01:00
renovate[bot]
f71073a77f
Update Terraform google to v4.42.1 ( #434 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-04 10:14:13 +01:00
Nils Hanke
4eb234eed5
Add www.linux-kvm.org to Lychee ignore list (temporarily)
2022-11-03 18:10:13 +01:00
Nils Hanke
b85bf47e09
Add tracking link for Lychee cookie support
2022-11-03 18:10:13 +01:00
Nils Hanke
212c5d5ffb
Ignore medium.com links until Lychee supports cookies
2022-11-03 18:10:13 +01:00
Felix Schuster
33e1e2cb03
Add demo section to README ( #441 )
2022-11-03 17:03:26 +01:00
Leonard Cohnen
6dc45959e1
verify: add AWS support
2022-11-03 16:44:54 +01:00
Leonard Cohnen
6fce8f77d3
join-service: bump image for AWS support
2022-11-03 16:44:54 +01:00
Leonard Cohnen
f7a5f299a0
aws: add needed IAM permission for join service
2022-11-03 16:44:54 +01:00
Otto Bittner
f164af29cf
AB#2583: deploy autoscaler via helm ( #438 )
2022-11-03 16:42:19 +01:00
renovate[bot]
72caeca69b
Update dependency matplotlib to v3.6.2
2022-11-03 16:01:52 +01:00
Malte Poll
4a7024c469
Make AMI public on creation ( #426 )
2022-11-03 15:22:51 +01:00
Thomas Tendyck
7ad55af07c
RFC: external KMS ( #395 )
...
* RFC: external KMS
* fixup! RFC: external
* fixup! RFC: external
2022-11-03 13:52:04 +01:00
Otto Bittner
0887bc540f
Fix invalid slice access in validateAk ( #437 )
2022-11-03 09:57:59 +01:00
Leonard Cohnen
1f9a788c21
aws: name instances for CCM
2022-11-02 23:29:04 +01:00
Leonard Cohnen
0d0191ba4d
aws: make CCM work
2022-11-02 23:29:04 +01:00
Leonard Cohnen
828923d159
debugd: add AWS
2022-11-02 23:29:04 +01:00
Leonard Cohnen
02602716b5
disk-mapper: add AWS attestation
2022-11-02 23:29:04 +01:00
Leonard Cohnen
3aa0177333
join-service: add AWS attestation
2022-11-02 23:29:04 +01:00
Leonard Cohnen
b69d19c3d6
metadata: clarify networking variables
2022-11-02 23:29:04 +01:00
Leonard Cohnen
0430336fdf
metadata: implement GetLoadBalancerEndpoint for AWS
2022-11-02 23:29:04 +01:00
Leonard Cohnen
58d083a433
cli: pass AWS state disk type to terraform
2022-11-02 23:29:04 +01:00
Leonard Cohnen
dd007f4772
metadata: move subnetCIDR to InstanceMetadata
2022-11-02 23:29:04 +01:00
Leonard Cohnen
0cdc7886ee
metadata: don't use podCIDR for Azure CCM setup
2022-11-02 23:29:04 +01:00
Leonard Cohnen
d59dc82e56
qemu attestation: fix typos
2022-11-02 23:29:04 +01:00
Leonard Cohnen
d979aeea2d
terraform: add necessary IAM permissions for AWS
2022-11-02 23:29:04 +01:00
Leonard Cohnen
be2b38f2ac
terraform: use HTTPS health check for AWS
2022-11-02 23:29:04 +01:00
Leonard Cohnen
7e385c4c86
terraform: use AWS launch templates
2022-11-02 23:29:04 +01:00
Leonard Cohnen
3dce7de0f1
helm chart loader: increase error verbosity
2022-11-02 23:29:04 +01:00
Leonard Cohnen
cc38506ffa
cli: AWS does not use a service account
2022-11-02 23:29:04 +01:00
Leonard Cohnen
015b12d8ff
attestation: use AWS attestation
2022-11-02 23:29:04 +01:00
Leonard Cohnen
f199b08068
attestation: make AWS TPM check use the correct region
2022-11-02 23:29:04 +01:00
Leonard Cohnen
37e8f5fc28
cilium: AWS support
2022-11-02 23:29:04 +01:00
Paul Meyer
ac3768bbc9
e2e: add k-bench to weekly run
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2022-11-02 18:47:16 +01:00
Christoph Meyer
273d6162de
fix: don't run CI K-Bench with less than 2 worker nodes
...
K-Bench's network benchmarks require two distinct worker nodes.
Add check prior to running the benchmark that terminates early, if not
enough workers scheduled.
2022-11-02 18:45:56 +01:00