Markus Rudy
Markus Rudy
Instead of single sentences, the public functions should document all their parameters, especially wrt ownership, and describe the scenario where the function is appropriate.
The private keys produced by `glome genkey` (and the corresponding public keys from `glome pubkey`) are x25519 keys, i.e. 32 raw octets. ### Key Exchange Dealing with GLOME keys is...
**Which feature do you think can be improved?** The `genpolicy` tool. **How can it be improved?** `genpolicy` should accept Kubernetes resources that use `volumeDevice` and create an appropriate policy for...
This PR allows `genpolicy` to parse Kubernetes objects using [raw block volumes](https://kubernetes.io/docs/concepts/storage/persistent-volumes/#raw-block-volume-support), and derives rules for creating these volumes in the guest VM container. Fixes #9651. cc @danmihai1
**Which feature do you think can be improved?** `genpolicy` **How can it be improved?** Generated policies for images that configure the runtime user by name should work. ```Dockerfile FROM alpine:latest...
When pulling an image by digest, I would expect the library to verify that the digest of the returned resource matches the requested digest. For testing purposes, I set up...
### Issue description Cilium pods don't start on nodes with multiple default routes, e.g. ```shell-session # ip route default via 10.224.0.1 dev eth0 proto dhcp src 10.224.0.5 metric 100 default...
Hi @FiloSottile, Thanks for providing this package! We're using it in [our product](https://github.com/edgelesssys/contrast) to deterministically generate keys for TLS, so that they can be recovered with a secret seed. The...
**Is your feature request related to a problem? Please describe.** I want to run unsigned containers from a public Github registry as confidential containers with guest pull, but I still...
This PR allows building the genpolicy binary on darwin and adds a CI step to ensure it keeps building in the future. Background: #10424. The individual commits have more detailed...