-
Story
-
Resolution: Done
-
Medium
-
None
-
None
-
BU Product Work
-
3
-
False
-
None
-
True
-
KATA-2412 - deploy a key broker service for Confidential Containers
-
-
-
Kata Sprint #256, Kata Sprint #257, Kata Sprint #258
-
0
-
0.000
We need an exception to keep network access while building trustee on Konflux.
The default policy is to have a hermetic build, that is without access to the network.
Docs: Enabling hermetic builds.
We need network access to install build dependencies from authenticated repositories (Dockerfile). The prefetch-dependencies task on Konflux doesn't support authenticated repositories at the moment (STONEBLD-2618).
- tpm2-tss-devel
- protobuf-compiler
We also need to download binaries from Intel (Dockerfile). Cachi2 doesn't support curl at the moment (KONFLUX-2390).