Cheat sheet for coco • Nino Martinez Wael

Peerpod IN pod container added sockets

confidential data hub - cdh https://github.com/confidential-containers/guest-components/blob/main/confidential-data-hub/example.config.toml socket mount unix:///run/confidential-containers/cdh.sock

attestation agent https://github.com/confidential-containers/guest-components/blob/main/attestation-agent/attestation-agent/config.example.toml socket mount unix:///run/confidential-containers/attestation-agent/attestation-agent.sock

IN pod communication
- check reachability: wget http://kbs-service.operators.svc.cluster.local:8080

echo -e “GET /aa/token?token_type=kbs HTTP/1.1\r\nhost: localhost\r\n\r\n” | socat unix-connect:/var/run/docker.sock STDIO

unix:///run/confidential-containers/attestation-agent/attestation-agent.sock

127.0.0.1:8006 /aa/token?token_type=kbs

echo -e “GET /aa/token?token_type=kbs HTTP/1.1\r\nhost: localhost\r\n\r\n” | socat unix-connect:/run/confidential-containers/cdh.sock STDIO