Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-10-01 01:36:09 -04:00
Code Issues Packages Projects Releases Wiki Activity
a3de1d95d9
constellation/internal
History
Markus Rudy a3de1d95d9 helm: deprioritize Cilium tc filters 
By default, Cilium's tc filters are added add the highest priority,
which makes it impossible to add any tc filters of our own (because the
Cilium eBPF programs don't return to the filter chain).

Two near-future use cases that would benefit from this:

* Network testing could add counting filters to interfaces and observe
  e.g. violations of encryption policy.
* The VPN Helm chart could add a filter policy that drops packets on the
  "physical" interface before they can leak to the CSP.
2023-12-05 09:52:52 +01:00
..
api terraform-provider: add attestation data source (#2640) 2023-11-28 17:30:11 +01:00
atls attestation: add awsSEVSNP as new variant (#1900) 2023-06-09 15:41:02 +02:00
attestation image: update measurements and image version (#2671) 2023-12-01 16:14:27 +01:00
cloud Support internal load balancers (#2388) 2023-10-17 15:46:15 +02:00
compatibility helm: fix upgrade command unintentionally skipping all service upgrades (#1992) 2023-06-30 16:46:05 +02:00
config image: update measurements and image version (#2671) 2023-12-01 16:14:27 +01:00
constants cli: use apply command to start mini cluster (#2551) 2023-11-20 12:10:16 +01:00
constellation constellation-lib: refactor init RPC to be shared (#2665) 2023-12-04 13:40:24 +01:00
containerimage cli: use Bazel container images 2023-04-18 15:35:15 +02:00
crypto joinservice: cache certificates for Azure SEV-SNP attestation (#2336) 2023-09-29 14:29:50 +02:00
cryptsetup bazel: use cryptsetup from nix 2023-12-01 09:35:33 +01:00
featureset cli: move cli/internal libraries (#2623) 2023-11-22 14:52:56 +01:00
file [Windows] cli: fix incorrect filepath separator causing upgrades to fail (#2562) 2023-11-08 10:26:02 +01:00
grpc cdbg: make endpoint deployment failure more transparent (#1883) 2023-06-12 13:45:34 +02:00
helm helm: deprioritize Cilium tc filters 2023-12-05 09:52:52 +01:00
imagefetcher api: add functions to transparently handle signatures upon API interaction (#2142) 2023-08-01 16:48:13 +02:00
installer go: remove redefinitions of builtins 2023-03-20 08:41:01 -04:00
kms docs: refer to apply command instead of init or upgrade apply (#2487) 2023-10-27 08:30:59 +02:00
kubecmd Create Kubernetes clients from bytes instead of filepath (#2663) 2023-12-01 09:00:44 +01:00
kubernetes Create Kubernetes clients from bytes instead of filepath (#2663) 2023-12-01 09:00:44 +01:00
license license: refactor license check to be agnostic of input (#2659) 2023-12-01 08:37:52 +01:00
logger deps: update grpc-middleware to v2 (#2286) 2023-08-29 14:07:19 +02:00
maa ci: add e2e test for self-managed infrastructure (#2472) 2023-10-27 09:37:26 +02:00
nodestate bazel: add build files for go (#1186) 2023-03-09 15:23:42 +01:00
osimage image: allow toggling secure boot in image upload 2023-09-27 17:58:19 +02:00
retry bazel: add build files for go (#1186) 2023-03-09 15:23:42 +01:00
role terraform: azure node groups (#1955) 2023-06-22 16:53:40 +02:00
semver cli: parse image and k8s versions as semver (#2235) 2023-08-23 14:37:53 +02:00
sigstore api: refine signature types 2023-09-04 11:20:13 +02:00
state state: fix whitespace issue in generated docs 2023-11-27 08:35:54 +01:00
staticupload staticupload: correctly set invalidation timeout 2023-09-04 11:20:13 +02:00
validation validation: use regex instead of dns lookup 2023-11-08 14:43:05 +01:00
verify verify: query vlek ASK from KDS if not set 2023-11-24 15:49:48 +01:00
versions deps: update Kubernetes versions (#2491) 2023-10-25 10:13:42 +02:00