attestation

package
v1.5.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 24, 2024 License: MPL-2.0 Imports: 12 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func NewTCBStatusError 

func NewTCBStatusError(tcbStatus tcbstatus.Status) error

NewTCBStatusError creates a new TCBStatusError.

func VerifyCertificate 

func VerifyCertificate(out io.Writer, rootCert *x509.Certificate, quote []byte, config Config) error

VerifyCertificate verifies the Coordinator's TLS certificate against the Coordinator's SGX quote. A config with the expected attestation metadata must be provided.

Types

type Config 

type Config struct {
	SecurityVersion     uint
	UniqueID            string
	SignerID            string
	ProductID           uint16
	Debug               bool
	Nonce               []byte
	AcceptedTCBStatuses []string
}

Config is the expected attestation metadata of a MarbleRun Coordinator enclave. It is used to verify the Coordinator's remote attestation report. At minimum, either UniqueID or the tuple of SignerID, ProductID, and SecurityVersion must be provided.

type TCBStatusError 

type TCBStatusError struct {
	// TCBStatus is the TCB status of the Coordinator enclave.
	TCBStatus tcbstatus.Status
}

TCBStatusError is returned when the TCB status of a Coordinator enclave is not accepted by a given configuration.

func (*TCBStatusError) Error 

func (e *TCBStatusError) Error() string

Error returns the error message.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.