Paul Meyer
f604a8dfd2
e2e: upload TCB versions in verify test
...
The TCP versions are extracted from the MAA token, that itself is taken
from the verify command output. The configapi is adapted to directly
work on the MAA claims JSON.
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-16 11:41:02 +02:00
Adrian Stobbe
5574092bcf
ref: update code for 2.11 ( #2239 )
...
Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
2023-08-16 11:34:58 +02:00
Daniel Weiße
103817a4a5
attestation: print ordered measurement verification warnings and errors ( #2237 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-16 10:45:54 +02:00
Malte Poll
78fa921746
image: use longterm release of the Linux kernel ( #2228 )
2023-08-16 10:42:48 +02:00
Daniel Weiße
ed0bfd9d41
cli: move helm and terraform out of kubernetes package ( #2222 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-16 09:59:32 +02:00
edgelessci
f270e91724
image: update measurements and image version ( #2238 )
...
Co-authored-by: katexochen <katexochen@users.noreply.github.com>
2023-08-16 09:41:01 +02:00
Paul Meyer
6352d8005d
bazel: use -C flag in govulncheck ci
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-15 16:29:56 +02:00
renovate[bot]
8c564ed84f
deps: update ghcr.io/edgelesssys/gcp-guest-agent Docker tag to v20230811 ( #2230 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-15 16:28:54 +02:00
renovate[bot]
26c41aacd2
deps: update module golang.org/x/vuln to v1 ( #2231 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-15 15:12:39 +02:00
renovate[bot]
91ec474b80
deps: update bufbuild/buf to v1.26.1 ( #2233 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-15 15:02:53 +02:00
renovate[bot]
841463d11e
deps: update GitHub action dependencies ( #2234 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-15 14:38:48 +02:00
Adrian Stobbe
0332a3645f
cli: update join-config manually during upgrade ( #2229 )
...
Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com>
2023-08-15 13:58:04 +02:00
Malte Poll
5c1bca5928
ci: set bazlrc options for "common" instead of "build" if they should always apply ( #2227 )
...
Most flags set in the bazelrc in CI are always applicable, so we set them with the common prefix.
2023-08-15 10:34:42 +02:00
3u13r
310b80c0a8
docs: update sigstore links ( #2225 )
2023-08-14 15:52:45 +02:00
3u13r
c597ffb1cf
upgrade: don't pass vm image ( #2211 )
2023-08-14 15:16:07 +02:00
Adrian Stobbe
58e9906811
only allow chart upgrades with greater version ( #2224 )
2023-08-14 15:08:25 +02:00
Malte Poll
b12f2867dd
ci: set bazel build event stream timeout to 600s ( #2223 )
2023-08-14 14:26:59 +02:00
3u13r
8c321ec1ab
cli: add role to aws instance name ( #2130 )
2023-08-14 13:42:20 +02:00
Daniel Weiße
ef4d789dc8
ci: fix notify trigger in e2e upgrade workflow ( #2221 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-14 11:45:04 +02:00
Adrian Stobbe
1af13878a0
fix configmap backup during upgrade ( #2219 )
2023-08-14 09:16:46 +02:00
Adrian Stobbe
c7bbf90989
ci: add e2e-mini to daily test ( #2217 )
2023-08-14 08:13:29 +02:00
renovate[bot]
d82dd6693c
deps: update ubuntu:20.04 Docker digest to 33a5cc2 ( #2214 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-11 15:32:39 +02:00
Adrian Stobbe
4788467bca
cli: upgrade uses same helm releases as init ( #2177 )
2023-08-11 15:18:59 +02:00
Daniel Weiße
2049713620
internal: move watcher package from internal to joinservice ( #2212 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-11 15:17:55 +02:00
Daniel Weiße
0e73e625d1
cli: don't refer to a message below, as it was printed above ( #2216 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-11 14:35:25 +02:00
renovate[bot]
1850829cd2
deps: update K8s constrained AWS versions ( #2199 )
...
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
2023-08-11 14:11:57 +02:00
Paul Meyer
de9e841853
e2e: use Kubernetes 1.26 in daily test
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-11 14:06:35 +02:00
renovate[bot]
d4e8d25636
deps: update golang:1.20.7 Docker digest to 37c7d85 ( #2213 )
...
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-11 13:44:55 +02:00
Daniel Weiße
715cc1f9de
Fix version ordering in semver error messages
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-11 12:20:21 +02:00
Daniel Weiße
dcd1c8bd1e
Fix CSI chart version not being compared to CLI version
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-11 12:20:21 +02:00
3u13r
4acfcaf723
cloud: use instanceid as name in aws ( #2210 )
2023-08-11 12:09:29 +02:00
edgelessci
aa787a3ea6
image: update measurements and image version ( #2206 )
...
Co-authored-by: katexochen <katexochen@users.noreply.github.com>
2023-08-11 11:19:57 +02:00
Daniel Weiße
589ac8c400
cli: correctly print absolute path for kubeconfig ( #2207 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-11 10:40:27 +02:00
Daniel Weiße
066fff951f
ci: correctly default to false for upgrade e2e notifications ( #2208 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-11 09:05:44 +02:00
renovate[bot]
c58770b8f8
deps: update K8s constrained GCP versions ( #2194 )
...
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
2023-08-10 19:56:59 +02:00
renovate[bot]
3528418f1b
deps: update K8s constrained Azure versions ( #2200 )
...
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
2023-08-10 19:20:56 +02:00
renovate[bot]
d9c4e4f6b3
deps: update Kubernetes versions ( #2195 )
...
Co-authored-by: Leonard Cohnen <lc@edgeless.systems>
2023-08-10 18:40:21 +02:00
Daniel Weiße
e30179a8aa
Remove manual state migration steps for AWS
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-10 15:46:59 +02:00
Daniel Weiße
154d1cc3cf
Make kubernetes version optional in e2e tests
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-10 15:46:59 +02:00
Daniel Weiße
0dd62fc59d
ci: allow setting region/zone for e2e tests ( #2205 )
...
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2023-08-10 12:53:40 +02:00
renovate[bot]
d12b6bf443
deps: update dependency rules_python to v0.24.0 ( #2197 )
...
* deps: update dependency rules_python to v0.24.0
* deps: upgrade rules_python archive
---------
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Malte Poll <mp@edgeless.systems>
2023-08-10 12:47:39 +02:00
renovate[bot]
34228cd261
deps: update module github.com/bazelbuild/rules_go to v0.41.0 ( #2198 )
...
* deps: update module github.com/bazelbuild/rules_go to v0.41.0
* deps: tidy all modules
---------
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
2023-08-10 11:24:20 +02:00
Malte Poll
9aa14f58eb
bazel: remove stale build rules ( #2202 )
2023-08-10 11:16:06 +02:00
renovate[bot]
a5d6e80dd8
deps: update fedora:38 Docker digest to 61f921e ( #2196 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-08-10 10:56:35 +02:00
Malte Poll
f70fc36075
deps: update bazel, rules_go and gazelle ( #2203 )
...
* deps: update dependency bazel to v6.3.2
* deps: update dependency io_bazel_rules_go to v0.41.0
* deps: update dependency bazel_gazelle to v0.32.0
* deps: tidy all modules
---------
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
2023-08-10 10:52:15 +02:00
Malte Poll
33c962b427
renovate: group core bazel dependencies (Bazel, rules_go, gazelle) ( #2204 )
...
* migrate renovate config and adopt json5
* renovate: group core bazel dependencies (Bazel, rules_go, gazelle)
2023-08-10 10:49:28 +02:00
renovate[bot]
947ceaa670
deps: update bufbuild/buf to v1.25.1 ( #2191 )
...
* deps: update bufbuild/buf to v1.25.1
* deps: tidy all modules
---------
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: edgelessci <edgelessci@users.noreply.github.com>
2023-08-10 08:55:24 +02:00
Paul Meyer
670c20b18c
e2e: cleanup test inputs
...
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-09 18:42:04 +02:00
Paul Meyer
e466ce2f26
e2e: detect changing idKeyDigests on azure
...
by setting the Azure SNP enforcement policy to equal in the weekly e2e.
The run should fail when there are unexpected ID Key digests used.
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-08-09 16:45:42 +02:00
3u13r
c43210c90b
ci: fix recover test ( #2162 )
...
* ci: fix recover test
Previously the test failed if not all nodes were recovered by the cli.
* ci: refactor recover test
2023-08-09 16:01:43 +02:00