Affected by GO-2023-1583 and 3 other vulnerabilities

GO-2023-1583: User data in TPM attestation vulnerable to MITM in github.com/edgelesssys/constellation

GO-2023-1622: Constellation allows Emergency shell access during initramfs boot phase in github.com/edgelesssys/constellation

GO-2024-2727: Constellation has pods exposed to peers in VPC in github.com/edgelesssys/constellation

GO-2025-4076: Constellation has insecure LUKS2 persistent storage partitions which may be opened and used in github.com/edgelesssys/constellation

disk-mapper/

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/edgelesssys/constellation

Links

Open Source Insights

README ¶

State

Files and source code for mounting persistent state disks

Testing

Integration test is available in disk-mapper/test/integration_test.go. The integration test requires root privileges since it uses dm-crypt. Build and run the test:

go test -c -tags=integration ./disk-mapper/test/
sudo ./test.test

Directories ¶

Path	Synopsis
cmd
internal
mapper
recoveryserver
rejoinclient
setup
systemd
recoverproto

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL