You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@teaclave.apache.org by GitBox <gi...@apache.org> on 2021/09/15 15:03:35 UTC

[GitHub] [incubator-teaclave] bigdata-memory commented on issue #553: Support containerized Intel Aesmd service

bigdata-memory commented on issue #553:
URL: https://github.com/apache/incubator-teaclave/issues/553#issuecomment-920101869


   @mssun Alternatively, we can ask user to create a bind volume using the following command if they don't use containerized aesmd service.
   ```
   docker volume create --driver local \
   --opt type=none \
   --opt device= /var/run/aesmd\
   --opt o=bind aesmd-socket
   ```
   
   In addition, It is already provided as containerized way to use aesmd service (https://github.com/intel/linux-sgx/blob/6b8d2d14d0daf8ed421165eb3347e7ee15bbf9d0/docker/build/Dockerfile#L65), the end user could just directly run the script `linux-sgx/docker/build/build_and_run_aesm_docker.sh` (https://github.com/intel/linux-sgx/blob/master/docker/build/build_and_run_aesm_docker.sh#L41) to start aesmd service, so we can rely on it to serve the SGX related requests from Teaclave, just need to mount `aesmd-socket` volume in such way to avoid possible conflict with host aesmd service. thanks.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@teaclave.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@teaclave.apache.org
For additional commands, e-mail: notifications-help@teaclave.apache.org