Skip to content

feat: Add GCP TDX support with event log compatibility fix #416

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
lalalune wants to merge 5 commits into
base: master
Choose a base branch
from
Open

feat: Add GCP TDX support with event log compatibility fix #416

lalalune wants to merge 5 commits into from
+465 −4

Conversation

@lalalune
Copy link

@lalalune lalalune commented Dec 13, 2025

  • Fix cc-eventlog to handle GCP's 0-based IMR indices using saturating_sub
  • Add Terraform configuration for GCP Confidential VMs (Intel TDX)
  • Add deployment scripts and comprehensive test suite (12 tests)
  • Add Base Sepolia network to hardhat config
  • Full backward compatibility with Phala/standard TDX deployments

Tested on GCP c3-standard-8 with real Intel TDX hardware attestation.

Feel free to just pick out the fixes to the lib.rs since that's the main actual fix

@lalalune
feat: Add GCP TDX support with event log compatibility fix
551d5fa 
- Fix cc-eventlog to handle GCP's 0-based IMR indices using saturating_sub
- Add Terraform configuration for GCP Confidential VMs (Intel TDX)
- Add deployment scripts and comprehensive test suite (12 tests)
- Add Base Sepolia network to hardhat config
- Full backward compatibility with Phala/standard TDX deployments

Tested on GCP c3-standard-8 with real Intel TDX hardware attestation.
@lalalune
remove note
4fc2ef5
@lalalune
chore: Clean up GCP deployment scripts
bbd4476
@lalalune
chore: Add SPDX license headers
e9b5ca4
@lalalune
remove md
bceb06c
@h4x3rotab
Copy link
Contributor

h4x3rotab commented Dec 16, 2025

Very good start point. It pulls the GCP's in-stock Ubuntu image, and install the dstack agent and docker runtime in the VM startup script. It largely works because GCP CC VM also offers standard TDX attestation API.

The missing pieces in this approach:

  • The base image is not reproducible, which is necessary to establish the chain-of-trust of OS code provenance
  • The startup scripts needs a way to be attested
  • dstack-kms needs to understand the attestation produced by GCP. Note that in GCP, there are more components like vTPM included in the TCB. So it's necessary to verify it in full.
  • Integrate with other dstack components like dstack-vmm and dstack-gateway

There's a tracking issue that covers the missing pieces: #125

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@lalalune @h4x3rotab