Skip to content

v0.4.0

Latest
Latest
Compare
Choose a tag to compare
@ruomengh ruomengh released this 08 Apr 07:15
· 54 commits to main since this release
v0.4.0
910fc59
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

What's Changed

  1. Supports Intel TDX 1.0 Technology Preview as a basis for CCNP (node measurement and container measurement).
  2. Supports measurement, event logs and Confidential Computing (CC) report gathering via Python SDK, Golang SDK and Rust SDK for containers.
  3. Provides E2E test for Python SDK, Golang SDK and Rust SDK.
  4. Supports CCNP deployment in Docker container on a single CVM or in a Kubernetes cluster.
  5. Provides CVM image rewriter tools to support production customizations like IMA policy, size, packages, initrd etc.

Known Issues

  1. Rust SDK: Get event logs in batch runs into "broken pipe" failure after the CVM runs for a few days. The fix is WIP.
  2. If using kernel packages from TDX Technical Preview, the measurement doesn't include kernel, initrd, kernel cmdline due to issue 40 and issue 35. The suggested fix of kernel patches are listed in the comments of issue 40.

Full Changelog: https://github.com/cc-api/confidential-cloud-native-primitives/commits/v0.4.0

Assets 2
Loading