a69dbda46b
NOISSUE - Bump github.com/spf13/cobra from 1.10.1 to 1.10.2 ( #565 )
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.10.1 to 1.10.2.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-version: 1.10.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-13 09:51:29 +01:00
dde4249abc
NOISSUE - Bump go.opentelemetry.io/otel/trace from 1.38.0 to 1.39.0 ( #566 )
...
Bumps [go.opentelemetry.io/otel/trace](https://github.com/open-telemetry/opentelemetry-go ) from 1.38.0 to 1.39.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.38.0...v1.39.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/trace
dependency-version: 1.39.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-13 09:51:16 +01:00
97ee07979e
NOISSUE - Bump golang.org/x/term from 0.38.0 to 0.39.0 ( #567 )
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.38.0 to 0.39.0.
- [Commits](https://github.com/golang/term/compare/v0.38.0...v0.39.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.39.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-13 09:50:56 +01:00
48310fb9e6
Bump golang.org/x/crypto from 0.43.0 to 0.45.0 ( #555 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.43.0 to 0.45.0.
- [Commits](https://github.com/golang/crypto/compare/v0.43.0...v0.45.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.45.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-12 20:50:42 +01:00
a128895ede
Bump github.com/google/go-tpm-tools from 0.4.6 to 0.4.7 ( #551 )
...
Bumps [github.com/google/go-tpm-tools](https://github.com/google/go-tpm-tools ) from 0.4.6 to 0.4.7.
- [Release notes](https://github.com/google/go-tpm-tools/releases )
- [Changelog](https://github.com/google/go-tpm-tools/blob/main/.goreleaser.yaml )
- [Commits](https://github.com/google/go-tpm-tools/compare/v0.4.6...v0.4.7 )
---
updated-dependencies:
- dependency-name: github.com/google/go-tpm-tools
dependency-version: 0.4.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-12 20:50:27 +01:00
9d900d40f6
Bump cloud.google.com/go/storage from 1.57.1 to 1.57.2 ( #556 )
...
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.57.1 to 1.57.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/storage/v1.57.1...storage/v1.57.2 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-version: 1.57.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-12 15:45:45 +01:00
5a4ac9d720
Bump golang.org/x/term from 0.36.0 to 0.37.0 ( #554 )
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.36.0 to 0.37.0.
- [Commits](https://github.com/golang/term/compare/v0.36.0...v0.37.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.37.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-12 15:45:01 +01:00
fdcde2b9aa
Bump github.com/google/go-sev-guest from 0.13.0 to 0.14.1 ( #548 )
...
Bumps [github.com/google/go-sev-guest](https://github.com/google/go-sev-guest ) from 0.13.0 to 0.14.1.
- [Release notes](https://github.com/google/go-sev-guest/releases )
- [Changelog](https://github.com/google/go-sev-guest/blob/main/.goreleaser.yaml )
- [Commits](https://github.com/google/go-sev-guest/compare/v0.13.0...v0.14.1 )
---
updated-dependencies:
- dependency-name: github.com/google/go-sev-guest
dependency-version: 0.14.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-12 15:44:37 +01:00
3498db14fb
NOISSUE - Track TDX policy ( #557 )
...
* Add initial implementation of attestation policy for SEV-SNP and TDX, including JSON configuration files and build scripts
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update working directory for Rust CI pipeline to sev-snp
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* fix build
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* fix tests
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* fix tests
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
---------
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2026-01-12 14:59:23 +01:00
c422afe0a6
NOISSUE - Introduce a dedicated attestation service and refactor agent to use its gRPC client ( #558 )
...
* feat: introduce a dedicated attestation service and refactor agent to use its gRPC client
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* feat: Source attestation-service from GitHub, updating its build and installation process.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* fix: update protoc version to 33.1 in CI workflow
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* refactor: Update Go build tag syntax, octal literals, and simplify agent attestation logic.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* chore: update igvmmeasure script's subdirectory path to tools/igvmmeasure
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* refactor: rename AttestationService RPC methods from `Get` to `Fetch` and update corresponding service implementation.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* refactor: rename attestation client methods from `GetX` to `FetchX`
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
---------
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2025-12-17 14:07:11 +01:00
3f06971976
NOISSUE - Bump cloud.google.com/go/storage from 1.57.0 to 1.57.1 ( #547 )
...
CI / lint (push) Has been cancelled
Rust CI Pipeline / rust-check (push) Has been cancelled
CI / upload-coverage (push) Has been cancelled
CI / test (agent) (push) Has been cancelled
CI / test (cli) (push) Has been cancelled
CI / test (cmd) (push) Has been cancelled
CI / test (internal) (push) Has been cancelled
CI / test (manager, true) (push) Has been cancelled
CI / test (pkg) (push) Has been cancelled
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.57.0 to 1.57.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/spanner/v1.57.0...storage/v1.57.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-version: 1.57.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-20 17:24:41 +01:00
9d8bb90476
NOISSUE - Bump github.com/docker/docker ( #550 )
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 28.5.1+incompatible to 28.5.2+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v28.5.1...v28.5.2 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-version: 28.5.2+incompatible
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-20 17:21:30 +01:00
e634b67bc5
NOISSUE - Bump golang.org/x/sync from 0.17.0 to 0.18.0 ( #552 )
...
Bumps [golang.org/x/sync](https://github.com/golang/sync ) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/sync/compare/v0.17.0...v0.18.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sync
dependency-version: 0.18.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-20 17:15:16 +01:00
291755ec87
NOISSUE - Refactor result command to improve output path handling and update usage instructions ( #549 )
...
* Refactor result command to improve output path handling and update usage instructions
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Refactor output path handling in NewResultsCmd to simplify directory creation and remove redundant comments
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update cli/result.go
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
---------
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-11-10 16:08:54 +01:00
de8e198b71
NOISSUE - Update certs and smq versions ( #544 )
...
* Update dependencies and refactor certificate generation to include context
- Updated `cloud.google.com/go/compute/metadata` from v0.8.0 to v0.9.0.
- Updated `github.com/absmach/certs` from v0.18.0 to v0.18.2.
- Updated `github.com/absmach/supermq` from v0.18.1 to v0.18.2.
- Updated `github.com/go-logfmt/logfmt` from v0.6.0 to v0.6.1.
- Updated `github.com/grpc-ecosystem/grpc-gateway/v2` from v2.27.2 to v2.27.3.
- Updated `github.com/prometheus/common` from v0.66.1 to v0.67.1.
- Updated `github.com/rogpeppe/go-internal` from v1.13.1 to v1.14.1.
- Updated `github.com/segmentio/asm` from v1.2.0 to v1.2.1.
- Updated `go.opentelemetry.io/auto/sdk` from v1.1.0 to v1.2.1.
- Updated `go.opentelemetry.io/proto/otlp` from v1.7.1 to v1.8.0.
- Updated `golang.org/x/net` from v0.45.0 to v0.46.0.
- Updated `golang.org/x/oauth2` from v0.30.0 to v0.32.0.
- Updated `google.golang.org/genproto/googleapis/api` and `google.golang.org/genproto/googleapis/rpc` to the latest versions.
- Refactored `generateCASignedCertificate` method in `certificate_provider.go` to accept a context parameter.
- Updated calls to `generateCASignedCertificate` in `GetCertificate` and `TestCASignedCertificateErrors` to pass the context.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update mockSDK method signatures in certificate error tests to include additional parameters
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
---------
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2025-11-04 12:18:23 +01:00
3b1605da77
NOISSUE - Add vTPM AK hash to SEV-SNP report ( #543 )
...
* add vTPM AK to SEV-SNP report
* fix ci errors
2025-11-03 13:01:53 +01:00
77a11c6535
add AllowEFIAppBeforeCallingEvent flag to vTPM verification ( #542 )
2025-10-30 16:16:17 +01:00
364724ff1b
Bump google.golang.org/grpc from 1.75.1 to 1.76.0 ( #538 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.75.1 to 1.76.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.75.1...v1.76.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-version: 1.76.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-16 11:34:31 +02:00
e382664a6a
NOISSUE - Bump github.com/docker/docker ( #540 )
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 28.5.0+incompatible to 28.5.1+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v28.5.0...v28.5.1 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-version: 28.5.1+incompatible
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-16 10:55:20 +02:00
fd84a37eca
Bump golang.org/x/crypto from 0.42.0 to 0.43.0 ( #537 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.42.0 to 0.43.0.
- [Commits](https://github.com/golang/crypto/compare/v0.42.0...v0.43.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.43.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-16 10:46:47 +02:00
cf32a252de
COCOS 492 - Fixes bug from 492, fetch certificates only for SEV-SNP cvms ( #536 )
...
* initial commit
* made changes based on errors
* remove unnecessary log
* bug fix
* bug fix
---------
Co-authored-by: Jovan Djukic <jovan.djukic@ultraviolet.com >
2025-10-16 10:45:21 +02:00
2b38f4595c
NOISSSUE - Fix SEV-SNP attestation policy validation ( #541 )
...
* Fix SEV-SNP attestation policy validation issue
- Replace abi.ReportCertsToProto() with direct proto.Unmarshal() to bypass
strict guest policy bit 17 validation that was failing
- Change protojson.Marshal() to proto.Marshal() for binary protobuf output
Signed-off-by: wkk <wkk@example.com >
* Remove debug logging
- Remove fmt.Println debug statements from cmd/agent/main.go
- Remove fmt.Println debug statements from pkg/atls/certificate_provider.go
- Remove fmt.Println debug statements from pkg/attestation/azure/snp.go
Signed-off-by: wkk <wkk@example.com >
* remove debug logs
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
---------
Signed-off-by: wkk <wkk@example.com >
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
2025-10-15 18:36:17 +02:00
04b0cdfd5d
COCOS-492: Cache VCEK on aTLS verification ( #524 )
...
* initial commit
* made changes based on errors
* remove unnecessary log
---------
Co-authored-by: Jovan Djukic <jovan.djukic@ultraviolet.com >
2025-10-09 23:54:36 +02:00
6b26f40a72
Bump github.com/absmach/certs from v0.17.1 to v0.18.0 ( #535 )
...
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2025-10-09 23:53:17 +02:00
439b041086
Update sev requirement ( #519 )
...
Updates the requirements on [sev](https://github.com/virtee/sev ) to permit the latest version.
Updates `sev` to 7.0.0
- [Release notes](https://github.com/virtee/sev/releases )
- [Commits](https://github.com/virtee/sev/commits )
---
updated-dependencies:
- dependency-name: sev
dependency-version: 7.0.0
dependency-type: direct:production
dependency-group: rs-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-09 23:53:02 +02:00
1143d4cc19
NOISSUE - Bump github.com/docker/docker ( #534 )
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 28.4.0+incompatible to 28.5.0+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v28.4.0...v28.5.0 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-version: 28.5.0+incompatible
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-08 09:20:29 +02:00
bd92b96b63
NOISSUE - Bump google.golang.org/protobuf from 1.36.9 to 1.36.10 ( #532 )
...
Bumps google.golang.org/protobuf from 1.36.9 to 1.36.10.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-version: 1.36.10
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-07 23:42:30 +02:00
93ac30d1a9
NOISSUE - Bump github.com/spf13/pflag from 1.0.9 to 1.0.10 ( #533 )
...
Bumps [github.com/spf13/pflag](https://github.com/spf13/pflag ) from 1.0.9 to 1.0.10.
- [Release notes](https://github.com/spf13/pflag/releases )
- [Commits](https://github.com/spf13/pflag/compare/v1.0.9...v1.0.10 )
---
updated-dependencies:
- dependency-name: github.com/spf13/pflag
dependency-version: 1.0.10
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-07 23:41:45 +02:00
817ac6c35c
NOISSUE - Bump cloud.google.com/go/storage from 1.56.1 to 1.57.0 ( #527 )
...
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.56.1 to 1.57.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/storage/v1.56.1...spanner/v1.57.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-version: 1.57.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-07 23:41:30 +02:00
6811a2481b
NOISSUE - Bump github.com/google/go-tpm from 0.9.5 to 0.9.6 ( #531 )
...
Bumps [github.com/google/go-tpm](https://github.com/google/go-tpm ) from 0.9.5 to 0.9.6.
- [Release notes](https://github.com/google/go-tpm/releases )
- [Commits](https://github.com/google/go-tpm/compare/v0.9.5...v0.9.6 )
---
updated-dependencies:
- dependency-name: github.com/google/go-tpm
dependency-version: 0.9.6
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-07 23:41:17 +02:00
0ffc2d17cf
NOISSUE - Update cocos to match certs changes ( #520 )
...
CI / checkproto (push) Has been cancelled
CI / lint (push) Has been cancelled
CI / test (agent) (push) Has been cancelled
CI / test (cli) (push) Has been cancelled
CI / test (cmd) (push) Has been cancelled
CI / test (internal) (push) Has been cancelled
CI / test (manager, true) (push) Has been cancelled
CI / test (pkg) (push) Has been cancelled
CI / upload-coverage (push) Has been cancelled
* pass domain id to agent environment
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* update generated files
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* use certs sdk directly
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* remove redundant variables
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* use agent certs token for csr
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* update certs and add token to create req
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* fix atls
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* add agent token to certificate provider
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* pass certs token to agent
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* use sdk for csr
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* update atls
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* fix tests
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* address comments
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* remove unused structs
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* update tests
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* lint
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* fix tests
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* lint
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* remove unused domain id
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* refactor tests and remove unused struct fields
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* refactor(atls): remove CAClient and inline CA certificate issuance
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* lint'
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* increase coverage
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* fix bug in certs sdk and certificate provider
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* update certs
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
* fix pkg stress
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
---------
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com >
2025-10-06 21:12:18 +02:00
0be724386b
NOISSUE - Bump github.com/docker/docker ( #516 )
...
CI / checkproto (push) Has been cancelled
CI / lint (push) Has been cancelled
Rust CI Pipeline / rust-check (push) Has been cancelled
CI / test (agent) (push) Has been cancelled
CI / test (cli) (push) Has been cancelled
CI / test (cmd) (push) Has been cancelled
CI / test (internal) (push) Has been cancelled
CI / test (manager, true) (push) Has been cancelled
CI / test (pkg) (push) Has been cancelled
CI / upload-coverage (push) Has been cancelled
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 28.3.3+incompatible to 28.4.0+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v28.3.3...v28.4.0 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-version: 28.4.0+incompatible
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-26 14:25:45 +02:00
7e59ca09fc
NOISSUE - Fix typos and import aliases
...
Signed-off-by: dusan <borovcanindusan1@gmail.com >
2025-09-26 14:12:14 +02:00
3aed6df66e
NOISSUE - Bump github.com/absmach/supermq from 0.18.0 to 0.18.1 ( #517 )
...
Bumps [github.com/absmach/supermq](https://github.com/absmach/supermq ) from 0.18.0 to 0.18.1.
- [Release notes](https://github.com/absmach/supermq/releases )
- [Commits](https://github.com/absmach/supermq/compare/v0.18.0...v0.18.1 )
---
updated-dependencies:
- dependency-name: github.com/absmach/supermq
dependency-version: 0.18.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-26 12:05:23 +02:00
fc5eff9ff0
NOISSUE - Bump golang.org/x/term from 0.34.0 to 0.35.0 ( #514 )
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.34.0 to 0.35.0.
- [Commits](https://github.com/golang/term/compare/v0.34.0...v0.35.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-26 11:55:06 +02:00
622f499a76
NOISSUE - Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 ( #518 )
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.9.1 to 1.10.1.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.9.1...v1.10.1 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-version: 1.10.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-26 11:48:54 +02:00
5783055e67
NOISSUE - Add reported TCB to attestation policy ( #523 )
...
Co-authored-by: ultraviolet <cocosai@ultraviolet.local >
2025-09-23 16:12:37 +03:00
c758b3b216
NOISSUE - Refactor aTLS and gRPC server to use CertificateProvider interface ( #522 )
...
* Refactor ATLS and gRPC server to use CertificateProvider interface
- Removed unused test cases and mock dependencies in atls_test.go.
- Updated TestGetPlatformVerifier to use CertificateVerifier struct.
- Introduced CertificateProvider interface for better abstraction in TLS handling.
- Refactored gRPC server to accept CertificateProvider and configure TLS accordingly.
- Simplified TLS configuration logic in both gRPC and HTTP servers.
- Removed unnecessary parameters from server initialization in tests and main function.
- Enhanced logging for TLS configurations.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Fix comments for consistency and clarity in atls.go
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update expected error messages in VM command tests for clarity
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Enhance tests by integrating mock providers and improving error messages for clarity
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Add comprehensive tests for certificate generation and attestation providers
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Implement certificate and attestation providers with unified generation logic
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Refactor certificate and attestation provider structures for consistency; implement CertificateVerifier interface and related methods
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Refactor attestation and certificate provider methods for consistency; rename methods and update related logic
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
---------
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2025-09-23 14:49:23 +02:00
906d7877b2
NOISSUE - Refactor http and grpc clients for reusability with Cube ( #521 )
...
* Implement gRPC server with TLS and mTLS support
- Added gRPC server implementation in pkg/server/grpc.
- Introduced server configuration options for TLS and mTLS.
- Implemented health check service for gRPC.
- Created tests for server initialization, startup, and shutdown scenarios.
- Added mock server for testing purposes.
- Implemented graceful shutdown handling for the server.
- Included documentation for the server package.
Signed-off-by: SammyOina <sammyoina@gmail.com >
* Add TLS and ATLS support to gRPC and HTTP clients; refactor security handling
Signed-off-by: SammyOina <sammyoina@gmail.com >
* Refactor server configuration structure to use Config instead of BaseConfig
Signed-off-by: SammyOina <sammyoina@gmail.com >
* Fix comments for consistency and clarity in TLS-related code
Signed-off-by: SammyOina <sammyoina@gmail.com >
* Add comprehensive tests for TLS and ATLS configurations in clients package
Signed-off-by: SammyOina <sammyoina@gmail.com >
* Refactor file permission constants in client tests to use octal notation
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Add tests for HTTP server's TLS configuration and lifecycle management
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Add comprehensive tests for TLS certificate handling and configuration
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Add comprehensive tests for HTTP client configuration and transport
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Refactor AttestationReportSize constant declaration for clarity
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Refactor client configuration structure and update gRPC client implementations
- Consolidated client configuration types into a unified structure with BaseConfig.
- Introduced AttestedClientConfig and StandardClientConfig for specific use cases.
- Updated gRPC client creation functions to utilize new configuration types.
- Refactored tests to align with the new configuration structure.
- Removed redundant ClientConfiguration interface and related methods.
- Simplified TLS configuration loading logic for both standard and attested clients.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Refactor client configuration structure and TLS handling
- Introduced StandardClientConfig to replace BaseConfig, simplifying client configuration.
- Updated AttestedClientConfig to embed StandardClientConfig instead of BaseConfig.
- Modified ClientConfiguration interface to use Config() method instead of GetBaseConfig().
- Refactored various client tests to accommodate changes in configuration structure.
- Added new TLS handling functions to support basic and attested TLS configurations.
- Implemented comprehensive tests for TLS loading and configuration validation.
- Removed deprecated methods and unnecessary code related to BaseConfig.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
---------
Signed-off-by: SammyOina <sammyoina@gmail.com >
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2025-09-18 17:10:20 +02:00
5377dd4d7f
NOISSUE - Prepare cocos for v0.8.0 ( #512 )
...
* Refactor mock interfaces to use 'any' instead of 'interface{}' for improved type safety and readability across multiple files in the manager and pkg directories.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update Go version to 1.25.x in CI workflows and remove obsolete Go package files
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Add mock implementations for various components in the attestation and SDK packages
- Created mock for MeasurementProvider in pkg/attestation/cmdconfig/mocks/mocks_test.go
- Created mock for Provider in pkg/attestation/mocks/mocks_test.go
- Created mock for Client in pkg/clients/grpc/mocks/mocks_test.go
- Created mock for SDK in pkg/sdk/mocks/mocks_test.go
These mocks are generated using mockery and are intended for unit testing purposes.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Remove autogenerated mock files and update mock usage in tests
- Deleted mocks for gRPC clients in pkg/clients/grpc/mocks/mocks_test.go and pkg/sdk/mocks/mocks_test.go.
- Updated test files in pkg/progressbar/progress_test.go to use the new mock structure without type parameters for gRPC client interfaces.
- Refactored mock generation in pkg/sdk/mocks/sdk.go to streamline the mock creation process and ensure consistency across mock methods.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update protobuf generated files for events and manager
- Bump protoc-gen-go version from v1.36.5 to v1.36.8 in events.pb.go and manager.pb.go.
- Refactor raw descriptor definitions in events.pb.go and manager.pb.go to use string concatenation for better readability and maintainability.
- Ensure compatibility with the latest protobuf specifications and improve code generation consistency.
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Update test commands to use GOTOOLCHAIN for consistent Go version handling
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
* Fix GOTOOLCHAIN usage in test command for consistency
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
---------
Signed-off-by: Sammy Oina <sammyoina@gmail.com >
2025-09-01 14:28:11 +02:00
1e2e635e69
Bump github.com/stretchr/testify from 1.10.0 to 1.11.0 ( #510 )
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.10.0...v1.11.0 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-version: 1.11.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-28 15:22:31 +03:00
541368844d
Bump google.golang.org/grpc from 1.74.2 to 1.75.0 ( #505 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.74.2 to 1.75.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.74.2...v1.75.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-version: 1.75.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 18:08:58 +02:00
09832e48c9
Bump github.com/absmach/supermq from 0.16.0 to 0.18.0 ( #507 )
...
Bumps [github.com/absmach/supermq](https://github.com/absmach/supermq ) from 0.16.0 to 0.18.0.
- [Release notes](https://github.com/absmach/supermq/releases )
- [Commits](https://github.com/absmach/supermq/compare/v0.16.0...v0.18.0 )
---
updated-dependencies:
- dependency-name: github.com/absmach/supermq
dependency-version: 0.18.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 18:08:28 +02:00
b5daee9e74
NOISSUE - Bump github.com/golang-jwt/jwt/v5 from 5.2.2 to 5.3.0 ( #508 )
...
Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt ) from 5.2.2 to 5.3.0.
- [Release notes](https://github.com/golang-jwt/jwt/releases )
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md )
- [Commits](https://github.com/golang-jwt/jwt/compare/v5.2.2...v5.3.0 )
---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v5
dependency-version: 5.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 17:59:30 +02:00
e42d24b536
NOISSUE - Bump google.golang.org/protobuf from 1.36.6 to 1.36.8 ( #509 )
...
Bumps google.golang.org/protobuf from 1.36.6 to 1.36.8.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-version: 1.36.8
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 17:59:11 +02:00
24998341d9
NOISSUE - Bump cloud.google.com/go/storage from 1.55.0 to 1.56.1 ( #506 )
...
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.55.0 to 1.56.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/spanner/v1.55.0...storage/v1.56.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-version: 1.56.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 16:48:45 +02:00
c0efb49ac3
Bump github.com/absmach/certs ( #501 )
...
Bumps [github.com/absmach/certs](https://github.com/absmach/certs ) from 0.0.0-20250707105817-4c41124bba54 to 0.17.0.
- [Release notes](https://github.com/absmach/certs/releases )
- [Commits](https://github.com/absmach/certs/commits/v0.17.0 )
---
updated-dependencies:
- dependency-name: github.com/absmach/certs
dependency-version: 0.17.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 14:46:49 +02:00
a9074e535f
Bump google.golang.org/protobuf from 1.36.6 to 1.36.7 ( #500 )
...
Bumps google.golang.org/protobuf from 1.36.6 to 1.36.7.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-version: 1.36.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 14:43:39 +02:00
25d6b088e7
Bump github.com/docker/docker ( #499 )
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 28.3.2+incompatible to 28.3.3+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v28.3.2...v28.3.3 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-version: 28.3.3+incompatible
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 14:43:21 +02:00
a6cd29d2c8
Bump golang.org/x/term from 0.33.0 to 0.34.0 ( #498 )
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.33.0 to 0.34.0.
- [Commits](https://github.com/golang/term/compare/v0.33.0...v0.34.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.34.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 14:43:00 +02:00
dependabot[bot]
Sammy Kerata Oina
Danko Miladinovic
Jovan Djukic
Washington Kigani Kamadi
dusan