mirror of https://github.com/confidential-containers/confidential-containers.git synced 2025-08-31 08:12:53 +00:00

Go to file

Fabiano Fidêncio 9b797d0ddf quickstart: Add a note about QEMU limitation with Kind / Minikube

It's a known limitation that QEMU based runtime classes will not work
with Kind or Minikube, leading to:
```
Events:
  Type     Reason                  Age   From               Message
  ----     ------                  ----  ----               -------
  Normal   Scheduled               42s   default-scheduler  Successfully assigned default/nginx-kata-qemu to minikube
  Warning  FailedCreatePodSandBox  9s    kubelet            Failed to create pod sandbox: rpc error: code = Unknown desc = failed to create containerd task: failed to create shim task: Failed to Check if grpc server is working: rpc error: code = DeadlineExceeded desc = timed out connecting to vsock 3189232285:1024: unknown
```

This needs further debug in order to get to the root cause of the issue,
and potentially to a fix.  However, for now, we should make sure that we
document such limitation.

One issue already reported about this is
https://github.com/confidential-containers/operator/issues/124, and
that's also been observed by Pradipta during the early tests of v0.1.0.

Signed-off-by: Fabiano Fidêncio <fabiano.fidencio@intel.com>

2022-11-10 12:13:12 +01:00

demos

ssh-demo: Update runtimeClassName (#59 )

2022-11-05 11:35:04 +05:30

images

doc: Trust Model Personas

2022-10-11 14:38:05 +02:00

releases

Start release notes for v0.2.0

2022-11-08 18:02:34 +01:00

.gitignore

docs: Trust Model Introduction

2022-03-09 22:07:01 +01:00

alignment.md

Standardize documentation filenames.

2022-09-26 18:09:03 +02:00

architecture_diagrams.pptx

documentation: Confidential Containers architecture

2022-09-28 09:24:11 +02:00

architecture.md

Update architecture.md

2022-11-09 14:09:46 +01:00

CODEOWNERS

docs : Add CODEOWNERS file

2022-03-03 14:40:51 +01:00

LICENSE

Initial commit

2021-10-04 18:40:23 +03:00

overview.md

Standardize documentation filenames.

2022-09-26 18:09:03 +02:00

quickstart.md

quickstart: Add a note about QEMU limitation with Kind / Minikube

2022-11-10 12:13:12 +01:00

README.md

Update release announcement

2022-11-09 18:50:09 +01:00

roadmap.md

Standardize documentation filenames.

2022-09-26 18:09:03 +02:00

threats_overview.md

Standardize documentation filenames.

2022-09-26 18:09:03 +02:00

trust_model_personas.md

trust_model_personas: Remove white spaces

2022-10-14 12:13:00 -05:00

trust_model.md

doc: Trust Model Personas

2022-10-11 14:38:05 +02:00

README.md

Confidential Containers Documentation

Confidential Containers is an open source community working to leverage Trusted Execution Environments to protect containers and data and to deliver cloud native confidential computing.

We have a new release every 6 weeks! See Release Notes or Quickstart Guide

Our key considerations are:

Allow cloud native application owners to enforce application security requirements
Transparent deployment of unmodified containers
Support for multiple TEE and hardware platforms
A trust model which separates Cloud Service Providers (CSPs) from guest applications
Least privilege principles for the Kubernetes cluster administration capabilities which impact delivering Confidential Computing for guest applications or data inside the TEE

Further Detail

Associated Repositories

Kubernetes Operator for Confidential Computing : An operator to deploy confidential containers runtime (and required configs) on a Kubernetes cluster

README.md

Confidential Containers Documentation

Further Detail

Associated Repositories

License