New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

There should be provision to provide cert as either a base64 encoded string or path to cert file #652

Open

bpradipt opened this issue Aug 5, 2024 · 1 comment

Labels

Member

bpradipt commented Aug 5, 2024

Today, AA and CDH accepts cert parameter which is a string. Example - https://github.com/confidential-containers/guest-components/blob/main/attestation-agent/attestation-agent/config.example.toml
This is bit fragile and can result in errors when copy/pasting the values.
A more robust mechanism is to either provide a base64 encoded cert or path to the cert file.

The text was updated successfully, but these errors were encountered:

bpradipt added the enhancement label

Member

Xynnn007 commented Aug 19, 2024

I think the current cert is in base64 encoding?

Could you give an example for the base64 encoding format you've mentioned?

We can use a path to cert file, while for kata this would introduce more files (certs) included in initdata.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment