The non-tee guide predates the sample attester, which
allows us to use the attestation flow without hardware
support.
Before that we had a workaround in the operator
that would provision a guest image with certain
keys already baked into that.
This is known as the ssh-demo in the operator,
but it shoudn't be confused with the ssh-demo
that we have in this repo, which is just a container
that ships with an ssh daemon inside of it.
The ssh-demo in this repo doesn't necessarily require
attestation and is unrelated.
We are removing the ssh-demo operator CRD so the nontee
guide should go as well.
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
For release v0.9.0 we will be using Kata main (among other changes).
Update/overhaul the release checklist to account for these differences.
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
On last release I created a document on CoCo's operator explaining how
the bundle can be updated to the Operator Hub. Updated this release
check-list to link to that document.
Signed-off-by: Wainer dos Santos Moschetta <wainersm@redhat.com>
This PR updates the docker compose command to avoid failures while
running `docker-compose` which is not a valid command.
Signed-off-by: Gabriela Cervantes <gabriela.cervantes.tellez@intel.com>
Fixup some number and naming. Also, remove notes about
using a branch as this is not required for doing the release.
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
This is needed in order to ensure the nydus-snapshotter will behave
properly when it's set in the runtime handler.
Signed-off-by: Fabiano Fidêncio <fabiano.fidencio@intel.com>
remove references to Kata protocols that we do not follow
remove basic instructions for GitHub
add more information about connecting with the community
change tone to be more welcoming
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
Following discussion in SC meeting on 7/27/22 the governance document
is ammended to allow membership changes to the steering committee.
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
The previous link would open an empty document. Instead of doing that,
let's point to the TSC meeting agenda document, so users searching for
it can have an easier time finding it from the project's GitHub page.
Fixes: #148
Signed-off-by: Fabiano Fidêncio <fabiano.fidencio@intel.com>
Fixes: https://github.com/confidential-containers/enclave-cc/issues/181
- Add the content of deploy KBS cluster and create encrypted image in enclave-cc.md
- Delete verdictd in enclave-cc.md and add cc-kbc and sample-kbc content, and give examples of usage
- Modify the creation of enclave-cc custom resource in quickstart.md
Signed-off-by: Huiting Hou <huiting.hou@linux.alibaba.com>
Inverted the order of the checkboxes and numbers so that Github provides
a tracker of how many steps are done at the top of the issue.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
Signed-off-by: Wainer dos Santos Moschetta <wainersm@redhat.com>
Added information about:
* bumping the guest-components version
* the release workflow that generates the image
* update the lock file
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
Signed-off-by: Wainer dos Santos Moschetta <wainersm@redhat.com>
Moved the step 8 ("Update kbs to use the latest commit ...") below to
step 9 ("Cut a guest-components ...") because the kbs depend on
guest-components, therefore, the later should be tagged *before* the
former.
Signed-off-by: Wainer dos Santos Moschetta <wainersm@redhat.com>
With the merge of image-rs, ocicrypt-rs and attestation-agent into a
single guest-components repository, the steps 1,2,3,9,10 and 13 are not
necessary anymore.
Signed-off-by: Wainer dos Santos Moschetta <wainersm@redhat.com>
A template to help people request meetings using
the official CoCo Zoom.
Let's try out the fancy new github issue forms.
Signed-off-by: Tobin Feldman-Fitzthum <tobin@ibm.com>
Updated the SEV guide with information about the default values of the
SEV policy for SEV and SEV-ES as well as the features enabled/disabled.
Signed-off-by: Wainer dos Santos Moschetta <wainersm@redhat.com>
The link to the previous version was broken. Replacing with the latest
version v1.3 of the whitepaper.
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
