Commits on Sep 7, 2023

1. Add buildah mkcw, add --cw to buildah commit and buildah build …

   Add a --cw option to `buildah build` and `buildah commit`, which takes a
   comma-separated list of arguments and produces an image laid out for use
   as a confidential workload:
     type: sev or snp
     attestation_url: location of a key broker server
     cpus: expected number of virtual CPUs to run with
     memory: expected megabytes of memory to run with
     workload_id: a distinguishing identifier for the key broker server
     ignore_attestation_errors: ignore errors registering the workload
     passphrase: for encrypting the disk image
     slop: extra space to allocate for the disk image
   
   At least one of attestation_url and passphrase must be specified in
   order for the encrypted disk image to be decryptable at run-time.  Other
   arguments can be omitted.  ignore_attestation_errors is intentionally
   undocumented, as it's mainly used to permit some amount of testing on
   systems which don't have the required hardware.
   
   Add an `mkcw` top-level command, for converting directly from an image
   to a confidential workload.
   
   Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>

   

   nalind committed Sep 7, 2023
   Configuration menu

   • View commit details
   • Copy full SHA for e89fac6
   • Browse repository at this point

   Copy the full SHA

   e89fac6 View commit details

   Browse the repository at this point in the history

2. Add some docs for build --cw, commit --cw, and mkcw …

   Add docs for the new --cw option recognized by both `commit` and
   `build`, and the new `mkcw` command.
   
   Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>

   

   nalind committed Sep 7, 2023
   Configuration menu

   • View commit details
   • Copy full SHA for 4f3abf9
   • Browse repository at this point

   Copy the full SHA

   4f3abf9 View commit details

   Browse the repository at this point in the history