Introduce builder pattern for OCI spec, mount PKI

aurae-runtime / aurae

Distributed systems runtime daemon written in Rust.

https://aurae.io

Apache License 2.0

1.84k stars 91 forks source link

Introduce builder pattern for OCI spec, mount PKI #330

Closed krisnova closed 1 year ago

krisnova commented 1 year ago

Introduce an OCI spec pattern for auraed and mount TLS material into spawn containers by default.

Signed-off-by: Kris Nóva kris@nivenly.com

krisnova commented 1 year ago

Starts to address #328

krisnova commented 1 year ago

This PR marks the line in the sand for "Aurae pod sandboxes running with musl recursively" which isn't necessarily a "huge" difference functionally from where we are today but its got all of the annoying bits out of the way