Edge-home-orchestration-go: [Secure] Local Image Execution

Created on 13 Jan 2021  ·  4Comments  ·  Source: lf-edge/edge-home-orchestration-go

Is there any way to run local container images in secure mode if DIGEST of the image is <none>?

help wanted question
Source
picture t25kim

All 4 comments

@t25kim In secure mode, we cannot run unknown containers (without a DIGEST)

tdrozdovsky picture tdrozdovsky on 13 Jan 2021
👍1

@tdrozdovsky Thank you for the prompt answer!
Do you think HomeEdge doesn't need to run local images for the developers?
I think it might be good for developers to have the method to enable or disable the verifier in secure mode.

t25kim picture t25kim on 13 Jan 2021

@t25kim There is a normal mode (without security) for developers. We cannot allow containers to run without a DIGEST. But in the future, when we add a digital signature of containerWhiteList, we can consider this option.

tdrozdovsky picture tdrozdovsky on 13 Jan 2021
👍1

@tdrozdovsky I thought there might be a developer wants to test his dev container in local PC with HTTPS and RBAC. Just my 2 cents. 😁

t25kim picture t25kim on 13 Jan 2021
Was this page helpful?
0 / 5 - 0 ratings

Related issues

MoonkiHong picture MoonkiHong  ·  5Comments
t25kim picture t25kim  ·  3Comments
t25kim picture t25kim  ·  4Comments
t25kim picture t25kim  ·  7Comments
t25kim picture t25kim  ·  3Comments