teepot

mirror of https://github.com/matter-labs/teepot.git synced 2025-07-21 23:23:57 +02:00

Author	SHA1	Message	Date
Harald Hoyer	eb39705ff1	feat: compat code for non `x86_64-linux` - do not build packages, which require `x86_64-linux` - use Phala `dcap-qvl` crate for remote attestation, if possible - nix: exclude `nixsgx` on non `x86_64-linux` platforms Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2025-04-10 11:57:46 +02:00
Harald Hoyer	11a22c9e67	feat: add Google Metadata support and TDX container test - Introduced `google-metadata` binary for reading GCP instance attributes. - Added TDX container test with new `container-test-tdx` package. - Updated Nix workflow and deployment scripts for Google Metadata integration. - Bumped `anyhow` to 1.0.95 and updated Cargo.lock. Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2025-01-27 16:18:58 +01:00
Harald Hoyer	dc1e756ec6	feat(tdx): add nix build for TDX google VMs Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2025-01-14 14:50:43 +01:00
Harald Hoyer	34a00bc5bd	feat(shell): enhance teepot shell with Rust tools support - Add rustfmt, clippy, and rust-src as extensions in the Rust toolchain. - Include bindgenHook and pkg-config in nativeBuildInputs for improved build support. - Set RUST_SRC_PATH for better Rust library integration.	2024-12-20 09:31:01 +01:00
Harald Hoyer	d8239dba2f	chore: update dependencies and enhance shell configuration - Updated multiple dependencies in flake.lock to their latest revisions. - Improved the shell configuration in the teepot with enhanced environment variable settings for SGX support. - Reinstated OPENSSL_NO_VENDOR and added library paths to ensure compatibility and proper linking.	2024-11-28 15:45:39 +01:00
Harald Hoyer	7743c1321a	chore: prepare release tags * set `publish = false` for multiple Cargo.toml files * cargo update * fix taplo.toml * sort `workspace.dependencies` * add `cargo-release` to nix shell Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2024-09-16 16:14:26 +02:00
Harald Hoyer	d37d8c4845	chore(nix): set shell environment for openssl The shellHook statement has been added to export OPENSSL_NO_VENDOR as 1. This should prevent building the vendored version of openssl.	2024-09-11 10:35:32 +02:00
Patryk Bęza	5e4b8901b0	feat(verify-attestation): RPC attestation and batch signature verification binary This is another variant of the binary tool for verifying attestation and the signature of a given batch. Unlike the existing tool, this variant does not require you to provide two separate files—one for the attestation and one for the signature. Instead, it automatically fetches both from the RPC node. Unfortunately, after discussing with @popzxc, we found that there is no way to reuse the RPC client because our published crates on crates.io are outdated and do not include the recently merged TEE-specific code changes. To be fixed in the future.	2024-08-30 12:14:55 +02:00
Harald Hoyer	eae8b860a9	feat: add Kubernetes pod spec for vault-unseal and update docs - Add `vault-unseal-pod-*.yaml` for Kubernetes deployment. - Update `README.md` to reflect changes in unseal and sign commands. - Add `vault` to the `shells/teepot/default.nix` package list. Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2024-08-07 14:46:10 +02:00
Harald Hoyer	91f1612e0f	chore: cleanup and nixify * create containers with nix * updated README.md * added SPDX license headers Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2024-02-28 11:09:34 +01:00
Harald Hoyer	30539e068f	feat: use snowfall flake for nix to make packages reusable by other flakes Signed-off-by: Harald Hoyer <harald@matterlabs.dev>	2024-02-14 11:39:39 +01:00

11 commits