You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@mesatee.apache.org by ms...@apache.org on 2019/12/05 01:09:50 UTC
[incubator-mesatee] branch master updated: [docker] Add README.md
for docker (#126)
This is an automated email from the ASF dual-hosted git repository.
mssun pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-mesatee.git
The following commit(s) were added to refs/heads/master by this push:
new 8edecbb [docker] Add README.md for docker (#126)
8edecbb is described below
commit 8edecbb657e3cbe73b726860a4134d9d3837d546
Author: Mingshen Sun <bo...@mssun.me>
AuthorDate: Wed Dec 4 17:09:40 2019 -0800
[docker] Add README.md for docker (#126)
---
docker/README.md | 55 +++++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 55 insertions(+)
diff --git a/docker/README.md b/docker/README.md
new file mode 100644
index 0000000..860963c
--- /dev/null
+++ b/docker/README.md
@@ -0,0 +1,55 @@
+This directory contains the docker infrastructure for build and runtime
+environment. Both Ubuntu 16.04 and 18.04 images are provided. Note that
+you must mount SGX device and ASEM domain socket into the container
+environment to use SGX feature.
+
+## Build
+
+The build dockerfile (`build.ubuntu-{1604,1804}.Dockerfile`) only contains
+minimal dependencies to build and test the project. To use them, you can
+directly use images from Docker Hub with:
+
+```
+$ docker run --rm \
+ --device=/dev/isgx \
+ -v/var/run/aesmd/aesm.socket:/var/run/aesmd/aesm.socket \
+ -v`pwd`:/mesatee \
+ -w /mesatee \
+ -it mesalocklinux/mesatee-build-ubuntu-1804
+```
+
+or you can also build the image by yourself with `docker build`:
+
+```
+$ docker build -t mesatee-build-ubuntu-1804 - < build.ubuntu-1804.Dockerfile
+```
+and run:
+
+```
+$ docker run --rm \
+ --device=/dev/isgx \
+ -v/var/run/aesmd/aesm.socket:/var/run/aesmd/aesm.socket \
+ -v`pwd`:/mesatee \
+ -w /mesatee \
+ -it mesatee-build-ubuntu-1804
+```
+
+## Runtime
+
+MesaTEE contains many services, we have put each service, config and related
+resources into different docker image. To make the deployment simpler, we
+recommend to use [docker-compose](https://docs.docker.com/compose/) to manage
+all services. Since the remote attestation is required for all services, you
+should setup the Intel Attestation Service ID (SPID) and key before start the
+services. You can use env vars or set them in the `docker-compose.yml` file.
+
+```
+$ export IAS_SPID=xxxxxx
+$ export IAS_KEY=xxxxxx
+$ cd docker && docker-compose -f docker-compose-ubuntu-1804.yml up
+Starting docker_mesatee-tms_1 ... done
+Starting docker_mesatee-tdfs_1 ... done
+Starting docker_mesatee-kms_1 ... done
+Starting docker_mesatee-fns_1 ... done
+Attaching to docker_mesatee-kms_1, docker_mesatee-tms_1, docker_mesatee-tdfs_1, docker_mesatee-fns_1
+```
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@mesatee.apache.org
For additional commands, e-mail: commits-help@mesatee.apache.org