Ideally, we should be able to get the (default) MokList, KEK, PK, db & dbx from the container image. Right now we are reading those values from https://github.com/confidential-clusters/reference-values.
We will have to investigate how those values may evolve during the lifetime of a system (i.e. if we have to compute multiple "combinaisons" of those for a single container).
Ideally, we should be able to get the (default) MokList, KEK, PK, db & dbx from the container image. Right now we are reading those values from https://github.com/confidential-clusters/reference-values.
We will have to investigate how those values may evolve during the lifetime of a system (i.e. if we have to compute multiple "combinaisons" of those for a single container).