mirror of
https://github.com/edgelesssys/constellation.git
synced 2024-12-21 21:55:27 -05:00
913b09aeb8
* terraform: enable creation of SEV-SNP VMs on GCP * variant: add SEV-SNP attestation variant * config: add SEV-SNP config options for GCP * measurements: add GCP SEV-SNP measurements * gcp: separate package for SEV-ES * attestation: add GCP SEV-SNP attestation logic * gcp: factor out common logic * choose: add GCP SEV-SNP * cli: add TF variable passthrough for GCP SEV-SNP variables * cli: support GCP SEV-SNP for `constellation verify` * Adjust usage of GCP SEV-SNP throughout codebase * ci: add GCP SEV-SNP * terraform-provider: support GCP SEV-SNP * docs: add GCP SEV-SNP reference * linter fixes * gcp: only run test with TPM simulator * gcp: remove nonsense test * Update cli/internal/cmd/verify.go Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update docs/docs/overview/clouds.md Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> * Update terraform-provider-constellation/internal/provider/attestation_data_source_test.go Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com> * linter fixes * terraform_provider: correctly pass down CC technology * config: mark attestationconfigapi as unimplemented * gcp: fix comments and typos * snp: use nonce and PK hash in SNP report * snp: ensure we never use ARK supplied by Issuer (#3025) * Make sure SNP ARK is always loaded from config, or fetched from AMD KDS * GCP: Set validator `reportData` correctly --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * attestationconfigapi: add GCP to uploading * snp: use correct cert Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> * terraform-provider: enable fetching of attestation config values for GCP SEV-SNP * linter fixes --------- Signed-off-by: Daniel Weiße <dw@edgeless.systems> Signed-off-by: Moritz Sanft <58110325+msanft@users.noreply.github.com> Co-authored-by: Daniel Weiße <66256922+daniel-weisse@users.noreply.github.com> Co-authored-by: Adrian Stobbe <stobbe.adrian@gmail.com>
2.5 KiB
2.5 KiB
page_title | subcategory | description |
---|---|---|
constellation_image Data Source - constellation | Data source to resolve the CSP-specific OS image reference for a given version and attestation variant. |
constellation_image (Data Source)
Data source to resolve the CSP-specific OS image reference for a given version and attestation variant.
Example Usage
data "constellation_image" "example" {
version = "v2.13.0"
attestation_variant = "aws-sev-snp"
csp = "aws"
region = "eu-west-1"
}
Schema
Required
attestation_variant
(String) Attestation variant the image should work with. Can be one of:aws-sev-snp
aws-nitro-tpm
azure-sev-snp
azure-tdx
gcp-sev-es
gcp-sev-snp
qemu-vtpm
csp
(String) CSP (Cloud Service Provider) to use. (e.g.azure
) See the full list of CSPs that Constellation supports.
Optional
marketplace_image
(Boolean) Whether a marketplace image should be used.region
(String) Region to retrieve the image for. Only required for AWS. The Constellation OS image must be replicated to the region,and the region must support AMD SEV-SNP, if it is used for Attestation.version
(String) Version of the Constellation OS image to use. (e.g.v2.13.0
). If not set, the provider version value is used.
Read-Only
image
(Attributes) Constellation OS Image to use on the nodes. (see below for nested schema)
Nested Schema for image
Optional:
marketplace_image
(Boolean) Whether a marketplace image should be used.
Read-Only:
reference
(String) CSP-specific unique reference to the image. The format differs per CSP.short_path
(String) CSP-agnostic short path to the image. The format isvX.Y.Z
for release images andref/$GIT_REF/stream/$STREAM/$SEMANTIC_VERSION
for pre-release images.$GIT_REF
is the git reference (i.e. branch name) the image was built on, e.g.main
.$STREAM
is the stream the image was built on, e.g.nightly
.$SEMANTIC_VERSION
is the semantic version of the image, e.g.vX.Y.Z
orvX.Y.Z-pre...
.version
(String) Semantic version of the image.