Skip to content

Attestation backport to v3.5#1

Draft
uril wants to merge 3 commits intotrusted-execution-clusters:attestationfrom
uril:attestation_backport_35
Draft

Attestation backport to v3.5#1
uril wants to merge 3 commits intotrusted-execution-clusters:attestationfrom
uril:attestation_backport_35

Conversation

@uril
Copy link

@uril uril commented Feb 3, 2026

  1. Backport attestation to v3.5
  2. Add a Containerfile to help build container images
  3. Add a github workflow to build and push ignition containers

uril added 3 commits February 3, 2026 18:47
@uril
config (v3_5): backport attestation to v3.5
727ed7f 
The attestation includes the fields necessary to attest the machine. For
example, in confidential clusters. The registration of the attestation
key enables to extract the AK of the TPM and register it before using it
to sign the TPM quote.

Signed-off-by: Alice Frosi <afrosi@redhat.com>
Signed-off-by: Uri Lublin <uril@redhat.com>
@uril
Add Containerfile.ignition
11d1ec9 
Optionally, BASE build-arg can be quay.io/centos/centos:stream9

Signed-off-by: Uri Lublin <uril@redhat.com>
@uril
Add a workflow to build ignition container images
e6933ba 
Also push the image to quay if
  1. even is push (to main branch)
  2. in trusted-execution-clusters organization
  3. quay credentials are available

Images are tagged twice with <date>-<gitshorthash> and latest

Assisted-by: Claude Code
Signed-off-by: Uri Lublin <uril@redhat.com>
@uril uril marked this pull request as draft February 3, 2026 17:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@uril

Comments