Constellation - v2.7.0

What's Changed

🛠 Breaking changes

  • config: remove deprecated upgradeConfig and require name and microserviceVersion fields by @daniel-weisse in https://github.com/edgelesssys/constellation/pull/1541

🎁 New features

  • attestation: add options to the EnforceIDKeyDigest config field to enable Microsoft Azure Attestation fallback when verifying AMD SNP-SEV id key digest by @daniel-weisse in https://github.com/edgelesssys/constellation/pull/1257
  • cli: upgrade apply now allows upgrading measurements only by @derpsteb in https://github.com/edgelesssys/constellation/pull/1432
  • config: deprecate confidentialVM config option for Azure clusters in favor of attestationVariant by @daniel-weisse in https://github.com/edgelesssys/constellation/pull/1539
  • docs: list minimal permissions set required for Constellation setup by @msanft in https://github.com/edgelesssys/constellation/pull/1442
  • cli: add status command to print upgrade and version status of cluster by @derpsteb in https://github.com/edgelesssys/constellation/pull/1520
  • cli: show available cli upgrades with upgrade check command by @msanft in https://github.com/edgelesssys/constellation/pull/1394
  • cli: print attestation document during verification with constellation verify by @msanft in https://github.com/edgelesssys/constellation/pull/1577

🐛 Bug fixes

  • bootstrapper: mitigate timeout issue during Cilium deployment by @Nirusu in https://github.com/edgelesssys/constellation/pull/1403
  • cli: prevent double initialization in cases where an error was mistakenly retried by @Nirusu in https://github.com/edgelesssys/constellation/pull/1404
  • cli: fix upgrade apply for image-only upgrades by @derpsteb in https://github.com/edgelesssys/constellation/pull/1468
  • ci: correctly determine PCR5 value by measuring it during build time by @derpsteb in https://github.com/edgelesssys/constellation/pull/1521

🔧 Other changes

  • attestation: create issuer based on kernel cmd line by @daniel-weisse in https://github.com/edgelesssys/constellation/pull/1355
  • docs: embedd asciinema casts by @datosh in https://github.com/edgelesssys/constellation/pull/1154
  • cli: only create resource backups if upgrade is executed by @derpsteb in https://github.com/edgelesssys/constellation/pull/1437
  • cli: grant Azure user-assigned managed identities all permissions previously granted to app registration by @malt3 in https://github.com/edgelesssys/constellation/pull/1334
  • experimental support for OpenStack by @malt3 in https://github.com/edgelesssys/constellation/pull/1443
  • cli: warn about missing support for upgrades on AWS, OpenStack, QEMU by @derpsteb in https://github.com/edgelesssys/constellation/pull/1518

Full Changelog: https://github.com/edgelesssys/constellation/compare/v2.6.0...v2.7.0

Details

date
April 4, 2023, 5:07 p.m.
name
v2.7.0
type
Minor
official page
https://github.com/edgelesssys/constellation/releases/tag/v2.7.0
👇
Register or login to:
  • 🔍View and search all Constellation releases.
  • 🛠️Create and share lists to track your tools.
  • 🚨Setup notifications for major, security, feature or patch updates.
  • 🚀Much more coming soon!
Continue with GitHub
Continue with Google
or