Confidential Containers (CoCo) provides a uniform workflow, trust model, and feature set across a wide array of platforms and deployment models.
In general, using CoCo involves the following steps:
- Install CoCo using the operator
- Add a runtimeClassName to your pod yaml
- Deploy signed/encrypted container images (optional)
- Setup attestation (optional)
This guide walks through these steps and touches on some platform-specific configurations. For more advanced features, specific hardware setup, and troubleshooting information, see the guides directory.
Confidential Containers is still maturing. See release notes for currrent hardware support and limitations.
You can enable Confidential Containers in an existing Kubernetes cluster using the Confidential Containers Operator. When installation is finished, your cluster will have new runtime classes for different hardware platforms, including a generic runtime for testing CoCo without confidential hardware support, a runtime using a remote hypervisor that allows for cloud integration, a runtime for process-based isolation using SGX, as well as runtimes for TDX and SEV.
To run the operator you must have an existing Kubernetes cluster that meets the followng requirements.
- Ensure a minimum of 8GB RAM and 4 vCPU for the Kubernetes cluster node
- Only containerd runtime based Kubernetes clusters are supported with the current CoCo release
- The minimum Kubernetes version should be 1.24
- Ensure at least one Kubernetes node in the cluster has the labels
node-role.kubernetes.io/worker=ornode.kubernetes.io/worker=. This will assign the worker role to a node in your cluster, making it responsible for running your applications and services - Ensure SELinux is disabled or not enforced (confidential-containers/operator#115)
For more details on the operator, including the custom resources managed by the operator, refer to the operator docs.
Note If you need to quickly deploy a single-node test cluster, you can use the run-local.sh script from the operator test suite, which will setup a single-node cluster on your machine for testing purpose. This script requires
ansible-playbook, which you can install on CentOS/RHEL usingdnf install ansible-core, and the Ansibledocker_containermodule, which you can get usingansible-galaxy collection install community.docker.
Note You can also use a Kind or Minikube cluster with containerd runtime to try out the CoCo stack for development purposes. Make sure to use the
kata-clhruntime class for your workloads when using Kind or Minikube, as QEMU is known to not be working with Kind or Minikube. Also, with theenclave-ccruntime class, the cluster must be prepared so that/opt/confidential-containerson the worker nodes is not on an overlayfs mount but the path is ahostPathmount (see a sample configuration)
Deploy the operator by running the following command where <RELEASE_VERSION> needs to be substituted
with the desired release tag.
kubectl apply -k github.com/confidential-containers/operator/config/release?ref=<RELEASE_VERSION>For example, to deploy the v0.10.0 release run:
kubectl apply -k github.com/confidential-containers/operator/config/release?ref=v0.10.0Wait until each pod has the STATUS of Running.
kubectl get pods -n confidential-containers-system --watchCreating a custom resource installs the required CC runtime pieces into the cluster node and creates
the RuntimeClasses
kubectl apply -k github.com/confidential-containers/operator/config/samples/ccruntime/<CCRUNTIME_OVERLAY>?ref=<RELEASE_VERSION>The current present overlays are: default and s390x
For example, to deploy the v0.10.0 release for x86_64, run:
kubectl apply -k github.com/confidential-containers/operator/config/samples/ccruntime/default?ref=v0.10.0And to deploy v0.10.0 release for s390x, run:
kubectl apply -k github.com/confidential-containers/operator/config/samples/ccruntime/s390x?ref=v0.10.0Wait until each pod has the STATUS of Running.
kubectl get pods -n confidential-containers-system --watchNote For enclave-cc certain configuration changes, such as setting the
URI of the KBS, must be made before applying the custom resource.
Please refer to the guide
to modify the enclave-cc configuration.
Please see the enclave-cc guide for more information.
enclave-cc is a form of Confidential Containers that uses process-based isolation.
enclave-cc can be installed with the following custom resources.
kubectl apply -k github.com/confidential-containers/operator/config/samples/enclave-cc/sim?ref=<RELEASE_VERSION>or
kubectl apply -k github.com/confidential-containers/operator/config/samples/enclave-cc/hw?ref=<RELEASE_VERSION>for the simulated SGX mode build or hardware SGX mode build, respectively.
Check the RuntimeClasses that got created.
kubectl get runtimeclassOutput:
NAME HANDLER AGE
kata kata-qemu 8d
kata-clh kata-clh 8d
kata-qemu kata-qemu 8d
kata-qemu-coco-dev kata-qemu-coco-dev 8d
kata-qemu-sev kata-qemu-sev 8d
kata-qemu-snp kata-qemu-snp 8d
kata-qemu-tdx kata-qemu-tdx 8dDetails on each of the runtime classes:
- kata - Convenience runtime that uses the handler of the default runtime
- kata-clh - standard kata runtime using the cloud hypervisor
- kata-qemu - same as kata
- kata-qemu-coco-dev - standard kata runtime using the QEMU hypervisor including all CoCo building blocks for a non CC HW
- kata-qemu-sev - using QEMU, and support for AMD SEV HW
- kata-qemu-snp - using QEMU, and support for AMD SNP HW
- kata-qemu-tdx -using QEMU, and support Intel TDX HW based on what's provided by Ubuntu and CentOS 9 Stream.
If you are using enclave-cc you should see the following runtime classes.
kubectl get runtimeclassOutput:
NAME HANDLER AGE
enclave-cc enclave-cc 9m55sThe CoCo operator environment has been setup and deployed!
While the operator deploys all the required binaries and artifacts and sets up runtime classes that use them, certain platforms may require additional configuration to enable confidential computing. For example, a specific host kernel or firmware may be required. See the guides for more information.
Below is a brief summary and description of some of the CoCo use cases and features:
- Container Launch with Only Memory Encryption (No Attestation) - Launch a container with memory encryption
- Container Launch with Encrypted Image - Launch an encrypted container by proving the workload is running in a TEE in order to retrieve the decryption key
- Container Launch with Image Signature Verification - Launch a container and verify the authenticity and integrity of an image by proving the workload is running in a TEE
- Sealed secret - Implement wrapped kubernetes secrets that are confidential to the workload owner and are automatically decrypted by proving the workload is running in a TEE
- Ephemeral Storage - Temporary storage that is used during the lifecycle of the container but is cleared out when a pod is restarted or finishes its task. At the moment, only ephemeral storage of the container itself is supported and it has to be explicityly configured.
- Authenticated Registries - Create secure container registries that require authentication to access and manage container images that ensures that only trusted images are deployed in the Confidential Container. The host must have access to the registry credentials.
- Secure Storage - Mechanisms and technologies used to protect data at rest, ensuring that sensitive information remains confidential and tamper-proof.
- Peer Pods - Enable the creation of VMs on any environment without requiring bare metal servers or nested virtualization support. More information about this feature can be found here.
With some TEEs, the CoCo use cases and/or configurations are implemented differently. Those are described in each corresponding guide section. To get started using CoCo without TEE hardware, follow the CoCo-dev guide below:
- CoCo-dev
- SEV(-ES)
- SNP
- TDX: No additional steps required.
- SGX
- IBM Secure Execution
- ...