ACON
ACON copied to clipboard
intel
The panic seems to be triggered by acond code (src/server.rs) at line 237, where it attempts to unwrap a ‘None‘’ value. **blobs details:** `[tdx@localhost .acon]$ ll blobs/sha384/38b060a751ac96384cd9327eb1b1e36a21fdb71114be07434c0cc7bf63f6e1da274edebfe76f65fbd51ad2f14898b95b.tar -rw------- 1 tdx...
**[tdx@localhost quote]$ make** openssl ecparam -genkey -name secp384r1 -out signer.pem openssl req -x509 -sha384 -key signer.pem -out signer.cer -outform der -subj /CN=self-signed-signer.pem aconcli init Initialized empty ACON repository in .acon...
This issue tracks several (minor) problems in `aconcli` command line syntax/flags. These problems should be easy to fix. - [x] `generate` errs on existing FS layer symlinks - [x] `generate`...
Below is the log info: ``` EFI stub: Loaded initrd from LINUX_EFI_INITRD_MEDIA_GUID device path NET: Registered PF_PACKET protocol family NET: Registered PF_VSOCK protocol family IPI shorthand broadcast: enabled sched_clock: Marking...
Currently, we are forwarding a host TCP port to the `acond` TCP port on the guest. But TCP ports don't have access control, so any user logged in the host...
In Rust, the `lib.rs` file plays a significant role in defining the behavior and public API of a Rust library crate. When I was doing fuzz tests for `acond` using...
Would be great to have some documentation or pointers to docs of how to use ACON as the container runtime with Kubernetes (as mentioned in https://community.intel.com/t5/Blogs/Products-and-Solutions/Security/Introducing-Attested-Containers/post/1539199)
Markdown should have line breaks at sentence ends or 100 characters. This facilitates PR diffs and makes it more readable in various tools including github raw views.
OpenSSL seems certifying its FIPS module on Debian/Ubuntu only. Building `acond` on Debain (and generating an initrd image from [Debian docker image](https://hub.docker.com/_/debian)) seems necessary for a FIPS compliant build. This...