Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

keyprovider: extend docker image and documentation #451

Merged
merged 1 commit into from
Jan 30, 2024
Merged

keyprovider: extend docker image and documentation #451

merged 1 commit into from
Jan 30, 2024

Conversation

mkulke
Copy link
Contributor

@mkulke mkulke commented Jan 24, 2024

The keyprovider docker image has been extended to bundle a keyprovider-capable skopeo and include a convenience script that simplifies the creation of encrypted images for usage in CoCo.

Documentation has been added to use the image.

@mkulke mkulke requested a review from jialez0 as a code owner January 24, 2024 12:44
@mkulke mkulke force-pushed the mkulke/extend-keyprovider-image branch from dc9dd3b to 0e5e275 Compare January 24, 2024 12:46
@mkulke
Copy link
Contributor Author

mkulke commented Jan 24, 2024

cc @bpradipt

@stevenhorsman stevenhorsman mentioned this pull request Jan 25, 2024
Closed
6 tasks
@mkulke mkulke force-pushed the mkulke/extend-keyprovider-image branch from 0e5e275 to 5623d8a Compare January 25, 2024 15:49
@mkulke mkulke requested a review from Xynnn007 January 30, 2024 06:47
Xynnn007
Xynnn007 approved these changes Jan 30, 2024
View reviewed changes
Copy link
Member

@Xynnn007 Xynnn007 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Wow. It is a very coool thing and will be of great use. There are only one topic to talk about

  1. I'm not sure if it could be better to keep encrypt.sh contents outside the Dockerfile, which would do help to maintainance.

@mkulke mkulke mentioned this pull request Jan 30, 2024
Merged
@mkulke
Copy link
Contributor Author

mkulke commented Jan 30, 2024
edited
Loading

  1. I'm not sure if it could be better to keep encrypt.sh contents outside the Dockerfile, which would do help to maintainance.

Indeed, that makes sense. I inlined the script to make it more more portable (i.e. it doesn't matter from where you invoke docker build) but since we build the code, we have to build from project root anyway.

@mkulke
keyprovider: extend docker image and documentation
9a7d3ef 
The keyprovider docker image has been extended to bundle a
keyprovider-capable skopeo and include a convenience script
that simplifies the creation of encrypted images for usage
in CoCo.

Documentation has been added to use the image.

Signed-off-by: Magnus Kulke <magnuskulke@microsoft.com>
@mkulke mkulke force-pushed the mkulke/extend-keyprovider-image branch from 5623d8a to 9a7d3ef Compare January 30, 2024 07:53
bpradipt
bpradipt approved these changes Jan 30, 2024
View reviewed changes
Copy link
Member

@bpradipt bpradipt left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@mkulke mkulke merged commit 8b0dbeb into confidential-containers:main Jan 30, 2024
6 checks passed
@mkulke mkulke deleted the mkulke/extend-keyprovider-image branch January 30, 2024 11:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bpradipt bpradipt bpradipt approved these changes

@Xynnn007 Xynnn007 Xynnn007 approved these changes

@jialez0 jialez0 Awaiting requested review from jialez0

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@mkulke @bpradipt @Xynnn007