VM detection in Docker

xavier.allaume · December 4, 2020, 6:53am

Hello,

Having deployed our Cryptlex-containing app in BitBucket pipes so as to perform DevOps on our project, we noticed that VM detection of these app instances running in docker containers doesn’t detect such a situation. Although we set a VM detection and forbidding in the license policy, Cryptlex doesn’t preclude the code from being executed in these docker containers. This seems special since we can’t reproduce the issue with our own docker images or VMs.

Cordially,

syed-faizan · December 4, 2020, 7:08am

Hi,

Since Docker is not a virtual machine so AllowVm property doesn’t affect the application run in Docker.

xavier.allaume · December 4, 2020, 8:41am

Hi and thanks for your quick reply,

OK, we understand our local test was wrong since we were running docker inside a VM, Cryptlex blocking, and us thinking that AllowVm=false would block docker execution. Is there anyway we can prevent this or is the 200$/month floating server our only option to control the execution in docker images with your technology?

Cordially,

adnan-kamili · December 4, 2020, 12:32pm

Hi Xavier,

We will see if we can add support for the same in node-locked/hosted-floating licenses too. Will keep you posted.

xavier.allaume · December 9, 2020, 9:23pm

Thank you very much. At least, the hosted-floating license is clearly the most important for industrial (non connected) uses.

xavier.allaume · December 27, 2020, 10:49am

Hi,

Digging a bit further, I can’t find a way to offer my customers a trial period with a trial policy that prevents them from running the trial inside docker. Then they would simply rerun a docker of the trial app before the end of the trial and have a continuous use of the app for free. Or is there something, most probably, that we don’t understand correctly.

Thanks for your help,

Cordially,

Xavier

adnan-kamili · December 28, 2020, 9:24am

Hi Xavier,

We have added server side support for this. We will add the support in LexActivator in the next release, may take a week or two.

xavier.allaume · December 28, 2020, 9:33am

Wundershön!!!

Eagerly waiting for it, our launch depends on it!

Thank you!
Xavier

adnan-kamili · January 12, 2021, 10:14am

Hi Xavier,

We have added the required feature. Please use the latest version of the LexActivator.

In your policies/licenses you can set allowContainerActivation to false, through Web API.

xavier.allaume · January 13, 2021, 11:45am

Thank you so much Adnan

xavier.allaume · January 15, 2021, 7:24am

OK, trying this this morning, I can’t find the checkbox with “Allow Container Activation” when creating a Trial Policy. How do I create this policy? Thank you

adnan-kamili · January 15, 2021, 9:59am

You need to update the policy using the web API. The option is not exposed in the dashboard.