Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Medium
Fix Version/s: OSC 1.8.0
Affects Version/s: None
Component/s: Operator
Labels:
None

Work Type:
BU Product Work
Story Points:
3
Epic Link:
Support signed container images
Blocked:
False
Blocked Reason:
None
Ready:
False
Feature Link:
KATA-3135 - support signed container images
Intelligence Requested:
Market:
Target Version:

OSC 1.8.0

Sprint:
Kata Sprint #260
Cost of Delay:
0
WSJF:
0.000

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Set two hardcoded values in the kata-agent config:

enable_signature_verification=true - this enables signature verification
image_policy_file=<uri> - this points to the URI of the policy file. I'd suggest picking a value like `kbs:///default/security-policy/osc` or similar

links to

openshift/sandboxed-containers-operator#468: Enable image signature check for CoCo

mentioned on

Merge request - Updated 2 upstream sources

Merge request - Updated 2 upstream sources

Merge request - Updated 2 upstream sources

Merge request - Updated 2 upstream sources

Merge request - Updated 2 upstream sources

Merge request - Updated 2 upstream sources

(2 mentioned on)

Assignee:: Wainer Moschetta

Reporter:: Jens Freimann

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/10/01 1:01 PM

Updated:: 2024/11/15 12:37 AM

Resolved:: 2024/11/13 1:17 PM