Skip to content

chutesai/sek8s

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

47 Commits
.cursor/rules
.cursor/rules
 
 
.githooks
.githooks
 
 
.github/workflows
.github/workflows
 
 
ansible
ansible
 
 
changelogs
changelogs
 
 
docker
docker
 
 
docs
docs
 
 
firmware
firmware
 
 
guest-tools
guest-tools
 
 
host-tools
host-tools
 
 
local
local
 
 
makefiles
makefiles
 
 
nvevidence
nvevidence
 
 
scripts
scripts
 
 
src
src
 
 
tests
tests
 
 
utils
utils
 
 
.bandit
.bandit
 
 
.dockerignore
.dockerignore
 
 
.flake8
.flake8
 
 
.gitignore
.gitignore
 
 
.python-version
.python-version
 
 
.security-sensitive-paths
.security-sensitive-paths
 
 
AGENT.md
AGENT.md
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
metadata.json
metadata.json
 
 
poetry.lock
poetry.lock
 
 
poetry.toml
poetry.toml
 
 
pyproject.toml
pyproject.toml
 
 
sek8s.code-workspace
sek8s.code-workspace
 
 
uv.lock
uv.lock
 
 

Repository files navigation

sek8s

Confidential GPU infrastructure for Chutes miners and zero-trust workloads. This monorepo bundles everything you need to build, attest, launch, and operate Intel TDX VMs with NVIDIA GPUs—including the host orchestration scripts, the guest image builder, and ready-to-run documentation.

What's in this repo?

Directory Purpose
**guest-tools/** Build the encrypted TDX VM image with k3s, attestation services, and GPU drivers
**host-tools/** Set up the host machine and launch the TDX VM (GPU binding, networking, volume management)
**docs/** Integration guide with chutes-miner and system-status service documentation
ansible/guest/ Ansible roles for guest image build automation
sek8s/, nvevidence/ Python services running inside the guest (attestation, evidence verification, system status)
guest-tools/ Boot measurement extraction tools (extract-acpi.sh, extract-vm-measurements.sh)

Quick start roadmap

  1. Set up the host — Use [host-tools/](host-tools/) to prepare your TDX-capable machine with the required kernel, PCCS, and networking.
  2. Download the VM image — Run ./quick-launch.sh --download from host-tools/scripts/ to fetch the prebuilt guest image (requires aria2).
  3. Configure and launch — Run ./quick-launch.sh --template to generate a config.yaml, fill in your miner credentials and network settings, then ./quick-launch.sh config.yaml to create volumes, configure GPUs, and boot the VM in one command.
  4. Understand the integration — Read [docs/end-to-end-miner.md](docs/end-to-end-miner.md) to see how this repo integrates with the chutes-miner control plane.
  5. Build the guest image (optional) — Use [guest-tools/](guest-tools/) and [ansible/guest/](ansible/guest/) to customize or rebuild the encrypted VM image.
  6. Monitor VM status — See [docs/system-status.md](docs/system-status.md) for using the system-status API to inspect service health and GPU telemetry inside the VM.

Important: The guest root disk is LUKS-encrypted. Only the Chutes attestation/key service (or your own compatible service) can decrypt it after verifying Intel TDX measurements, so simply possessing the qcow2 image is not enough to run the VM.

The config.yaml defines your deployment: VM identity, miner credentials, network settings, optional Docker Hub authentication, and separate cache and storage volumes. See [host-tools/scripts/config/CONFIG-GUIDE.md](host-tools/scripts/config/CONFIG-GUIDE.md) for the full schema reference.

How this repo pairs with chutes-miner

  • Guest image: Built with guest-tools/ and ansible/guest/, contains the full Chutes stack pre-installed.
  • Host operations: Use host-tools/ to launch and manage the TDX VM on bare metal.
  • Control plane: The chutes-miner repo manages your fleet of miners (both TEE and non-TEE) via chutes-miner-cli.
  • Integration: See [docs/end-to-end-miner.md](docs/end-to-end-miner.md) for how the pieces fit together.

Note: TEE VMs have no SSH access. Use the chutes-miner-cli for management and the system-status API (see [docs/system-status.md](docs/system-status.md)) for read-only monitoring.

Key Documentation

  • **[host-tools/README.md](host-tools/README.md)** — Setting up the TDX host and launching VMs
  • **[guest-tools/README.md](guest-tools/README.md)** — Building and measuring the encrypted VM image
  • **[docs/end-to-end-miner.md](docs/end-to-end-miner.md)** — Complete integration workflow with chutes-miner
  • **[docs/system-status.md](docs/system-status.md)** — System status API for monitoring service health and GPU telemetry

Questions / contributions

  • File an issue or PR in this repo for host tooling, image builds, or docs
  • Use the chutes-miner repo for chart-specific issues

About

Secure, standalone k8s setup with TEE.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

5 stars

Watchers

0 watching

Forks

3 forks
Report repository

Releases

15 tags

Packages

 
 
 

Contributors

Languages