attest

package
v0.0.0-...-0462d38 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 20, 2024 License: Apache-2.0 Imports: 5 Imported by: 4

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	ZAttestReqType_name = map[int32]string{
		0: "ATTEST_REQ_NONE",
		1: "ATTEST_REQ_CERT",
		2: "ATTEST_REQ_NONCE",
		3: "ATTEST_REQ_QUOTE",
		4: "Z_ATTEST_REQ_TYPE_STORE_KEYS",
	}
	ZAttestReqType_value = map[string]int32{
		"ATTEST_REQ_NONE":              0,
		"ATTEST_REQ_CERT":              1,
		"ATTEST_REQ_NONCE":             2,
		"ATTEST_REQ_QUOTE":             3,
		"Z_ATTEST_REQ_TYPE_STORE_KEYS": 4,
	}
)

Enum value maps for ZAttestReqType.

View Source 
var (
	ZAttestRespType_name = map[int32]string{
		0: "ATTEST_RESP_NONE",
		1: "ATTEST_RESP_CERT",
		2: "ATTEST_RESP_NONCE",
		3: "ATTEST_RESP_QUOTE_RESP",
		4: "Z_ATTEST_RESP_TYPE_STORE_KEYS",
	}
	ZAttestRespType_value = map[string]int32{
		"ATTEST_RESP_NONE":              0,
		"ATTEST_RESP_CERT":              1,
		"ATTEST_RESP_NONCE":             2,
		"ATTEST_RESP_QUOTE_RESP":        3,
		"Z_ATTEST_RESP_TYPE_STORE_KEYS": 4,
	}
)

Enum value maps for ZAttestRespType.

View Source 
var (
	TpmHashAlgo_name = map[int32]string{
		0: "TPM_HASH_ALGO_INVALID",
		1: "TPM_HASH_ALGO_SHA1",
		2: "TPM_HASH_ALGO_SHA256",
		3: "TPM_HASH_ALGO_SHA512",
	}
	TpmHashAlgo_value = map[string]int32{
		"TPM_HASH_ALGO_INVALID": 0,
		"TPM_HASH_ALGO_SHA1":    1,
		"TPM_HASH_ALGO_SHA256":  2,
		"TPM_HASH_ALGO_SHA512":  3,
	}
)

Enum value maps for TpmHashAlgo.

View Source 
var (
	AttestGPSInput_name = map[int32]string{
		0: "ATTEST_GPS_INPUT_INVALID",
		1: "ATTEST_GPS_INPUT_PRESENT",
		2: "ATTEST_GPS_INPUT_ABSENT",
	}
	AttestGPSInput_value = map[string]int32{
		"ATTEST_GPS_INPUT_INVALID": 0,
		"ATTEST_GPS_INPUT_PRESENT": 1,
		"ATTEST_GPS_INPUT_ABSENT":  2,
	}
)

Enum value maps for AttestGPSInput.

View Source 
var (
	AttestVersionType_name = map[int32]string{
		0: "ATTEST_VERSION_TYPE_INVALID",
		1: "ATTEST_VERSION_TYPE_EVE",
		2: "ATTEST_VERSION_TYPE_FIRMWARE",
	}
	AttestVersionType_value = map[string]int32{
		"ATTEST_VERSION_TYPE_INVALID":  0,
		"ATTEST_VERSION_TYPE_EVE":      1,
		"ATTEST_VERSION_TYPE_FIRMWARE": 2,
	}
)

Enum value maps for AttestVersionType.

View Source 
var (
	ZAttestResponseCode_name = map[int32]string{
		0: "Z_ATTEST_RESPONSE_CODE_INVALID",
		1: "Z_ATTEST_RESPONSE_CODE_SUCCESS",
		2: "Z_ATTEST_RESPONSE_CODE_NONCE_MISMATCH",
		3: "Z_ATTEST_RESPONSE_CODE_NO_CERT_FOUND",
		4: "Z_ATTEST_RESPONSE_CODE_QUOTE_FAILED",
	}
	ZAttestResponseCode_value = map[string]int32{
		"Z_ATTEST_RESPONSE_CODE_INVALID":        0,
		"Z_ATTEST_RESPONSE_CODE_SUCCESS":        1,
		"Z_ATTEST_RESPONSE_CODE_NONCE_MISMATCH": 2,
		"Z_ATTEST_RESPONSE_CODE_NO_CERT_FOUND":  3,
		"Z_ATTEST_RESPONSE_CODE_QUOTE_FAILED":   4,
	}
)

Enum value maps for ZAttestResponseCode.

View Source 
var (
	AttestVolumeKeyType_name = map[int32]string{
		0: "ATTEST_VOLUME_KEY_TYPE_INVALID",
		1: "ATTEST_VOLUME_KEY_TYPE_VSK",
	}
	AttestVolumeKeyType_value = map[string]int32{
		"ATTEST_VOLUME_KEY_TYPE_INVALID": 0,
		"ATTEST_VOLUME_KEY_TYPE_VSK":     1,
	}
)

Enum value maps for AttestVolumeKeyType.

View Source 
var (
	AttestStorageKeysResponseCode_name = map[int32]string{
		0: "ATTEST_STORAGE_KEYS_RESPONSE_CODE_INVALID",
		1: "ATTEST_STORAGE_KEYS_RESPONSE_CODE_SUCCESS",
		2: "ATTEST_STORAGE_KEYS_RESPONSE_CODE_ITOKEN_MISMATCH",
	}
	AttestStorageKeysResponseCode_value = map[string]int32{
		"ATTEST_STORAGE_KEYS_RESPONSE_CODE_INVALID":         0,
		"ATTEST_STORAGE_KEYS_RESPONSE_CODE_SUCCESS":         1,
		"ATTEST_STORAGE_KEYS_RESPONSE_CODE_ITOKEN_MISMATCH": 2,
	}
)

Enum value maps for AttestStorageKeysResponseCode.

View Source 
var File_attest_attest_proto protoreflect.FileDescriptor

Functions

This section is empty.

Types

type AttestGPSCoordinates 

type AttestGPSCoordinates struct {
	GpsInput AttestGPSInput `` // Are the coordinates populated ?
	/* 128-byte string literal not displayed */
	Latitude  float64 `protobuf:"fixed64,2,opt,name=latitude,proto3" json:"latitude,omitempty"`   // Latitude of the device geo-location
	Longitude float64 `protobuf:"fixed64,3,opt,name=longitude,proto3" json:"longitude,omitempty"` // Longitude of the device geo-location
	// contains filtered or unexported fields
}

func (*AttestGPSCoordinates) Descriptor deprecated 

func (*AttestGPSCoordinates) Descriptor() ([]byte, []int)

Deprecated: Use AttestGPSCoordinates.ProtoReflect.Descriptor instead.

func (*AttestGPSCoordinates) GetGpsInput 

func (x *AttestGPSCoordinates) GetGpsInput() AttestGPSInput

func (*AttestGPSCoordinates) GetLatitude 

func (x *AttestGPSCoordinates) GetLatitude() float64

func (*AttestGPSCoordinates) GetLongitude 

func (x *AttestGPSCoordinates) GetLongitude() float64

func (*AttestGPSCoordinates) ProtoMessage 

func (*AttestGPSCoordinates) ProtoMessage()

func (*AttestGPSCoordinates) ProtoReflect 

func (x *AttestGPSCoordinates) ProtoReflect() protoreflect.Message

func (*AttestGPSCoordinates) Reset 

func (x *AttestGPSCoordinates) Reset()

func (*AttestGPSCoordinates) String 

func (x *AttestGPSCoordinates) String() string

type AttestGPSInput 

type AttestGPSInput int32
const (
	AttestGPSInput_ATTEST_GPS_INPUT_INVALID AttestGPSInput = 0
	AttestGPSInput_ATTEST_GPS_INPUT_PRESENT AttestGPSInput = 1 //GPS Coordinates are available
	AttestGPSInput_ATTEST_GPS_INPUT_ABSENT  AttestGPSInput = 2 //GPS Coordinates are not available/reliable
)

func (AttestGPSInput) Descriptor 

func (AttestGPSInput) Descriptor() protoreflect.EnumDescriptor

func (AttestGPSInput) Enum 

func (x AttestGPSInput) Enum() *AttestGPSInput

func (AttestGPSInput) EnumDescriptor deprecated 

func (AttestGPSInput) EnumDescriptor() ([]byte, []int)

Deprecated: Use AttestGPSInput.Descriptor instead.

func (AttestGPSInput) Number 

func (x AttestGPSInput) Number() protoreflect.EnumNumber

func (AttestGPSInput) String 

func (x AttestGPSInput) String() string

func (AttestGPSInput) Type 

func (AttestGPSInput) Type() protoreflect.EnumType

type AttestStorageKeys 

type AttestStorageKeys struct {
	IntegrityToken []byte             `protobuf:"bytes,1,opt,name=integrity_token,json=integrityToken,proto3" json:"integrity_token,omitempty"` // integrity_token provided by controller in the last attestation cycle
	Keys           []*AttestVolumeKey `protobuf:"bytes,2,rep,name=keys,proto3" json:"keys,omitempty"`                                           // Encrypted keys for volume vault(s)
	// contains filtered or unexported fields
}

Encrypted data to save and retrievable post successful attestation

func (*AttestStorageKeys) Descriptor deprecated 

func (*AttestStorageKeys) Descriptor() ([]byte, []int)

Deprecated: Use AttestStorageKeys.ProtoReflect.Descriptor instead.

func (*AttestStorageKeys) GetIntegrityToken 

func (x *AttestStorageKeys) GetIntegrityToken() []byte

func (*AttestStorageKeys) GetKeys 

func (x *AttestStorageKeys) GetKeys() []*AttestVolumeKey

func (*AttestStorageKeys) ProtoMessage 

func (*AttestStorageKeys) ProtoMessage()

func (*AttestStorageKeys) ProtoReflect 

func (x *AttestStorageKeys) ProtoReflect() protoreflect.Message

func (*AttestStorageKeys) Reset 

func (x *AttestStorageKeys) Reset()

func (*AttestStorageKeys) String 

func (x *AttestStorageKeys) String() string

type AttestStorageKeysResp 

type AttestStorageKeysResp struct {
	Response AttestStorageKeysResponseCode `` //Result of processing Z_ATTEST_REQ_TYPE_STORE_KEYS in Controller
	/* 127-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*AttestStorageKeysResp) Descriptor deprecated 

func (*AttestStorageKeysResp) Descriptor() ([]byte, []int)

Deprecated: Use AttestStorageKeysResp.ProtoReflect.Descriptor instead.

func (*AttestStorageKeysResp) GetResponse 

func (x *AttestStorageKeysResp) GetResponse() AttestStorageKeysResponseCode

func (*AttestStorageKeysResp) ProtoMessage 

func (*AttestStorageKeysResp) ProtoMessage()

func (*AttestStorageKeysResp) ProtoReflect 

func (x *AttestStorageKeysResp) ProtoReflect() protoreflect.Message

func (*AttestStorageKeysResp) Reset 

func (x *AttestStorageKeysResp) Reset()

func (*AttestStorageKeysResp) String 

func (x *AttestStorageKeysResp) String() string

type AttestStorageKeysResponseCode 

type AttestStorageKeysResponseCode int32
const (
	AttestStorageKeysResponseCode_ATTEST_STORAGE_KEYS_RESPONSE_CODE_INVALID         AttestStorageKeysResponseCode = 0
	AttestStorageKeysResponseCode_ATTEST_STORAGE_KEYS_RESPONSE_CODE_SUCCESS         AttestStorageKeysResponseCode = 1 // key(s) successfully stored
	AttestStorageKeysResponseCode_ATTEST_STORAGE_KEYS_RESPONSE_CODE_ITOKEN_MISMATCH AttestStorageKeysResponseCode = 2 // integrity_token was not valid, try after successful attestation
)

func (AttestStorageKeysResponseCode) Descriptor 

func (AttestStorageKeysResponseCode) Descriptor() protoreflect.EnumDescriptor

func (AttestStorageKeysResponseCode) Enum 

func (x AttestStorageKeysResponseCode) Enum() *AttestStorageKeysResponseCode

func (AttestStorageKeysResponseCode) EnumDescriptor deprecated 

func (AttestStorageKeysResponseCode) EnumDescriptor() ([]byte, []int)

Deprecated: Use AttestStorageKeysResponseCode.Descriptor instead.

func (AttestStorageKeysResponseCode) Number 

func (x AttestStorageKeysResponseCode) Number() protoreflect.EnumNumber

func (AttestStorageKeysResponseCode) String 

func (x AttestStorageKeysResponseCode) String() string

func (AttestStorageKeysResponseCode) Type 

func (AttestStorageKeysResponseCode) Type() protoreflect.EnumType

type AttestVersionInfo 

type AttestVersionInfo struct {
	VersionType AttestVersionType `` // One of VersionType
	/* 140-byte string literal not displayed */
	Version string `protobuf:"bytes,2,opt,name=version,proto3" json:"version,omitempty"` // Version string of the corresponding package
	// contains filtered or unexported fields
}

examples ATTEST_VERSION_TYPE_EVE, "5.6.1-amd64" ATTEST_VERSION_TYPE_FIRMWARE, "American Megatrends Inc.-5.12"

func (*AttestVersionInfo) Descriptor deprecated 

func (*AttestVersionInfo) Descriptor() ([]byte, []int)

Deprecated: Use AttestVersionInfo.ProtoReflect.Descriptor instead.

func (*AttestVersionInfo) GetVersion 

func (x *AttestVersionInfo) GetVersion() string

func (*AttestVersionInfo) GetVersionType 

func (x *AttestVersionInfo) GetVersionType() AttestVersionType

func (*AttestVersionInfo) ProtoMessage 

func (*AttestVersionInfo) ProtoMessage()

func (*AttestVersionInfo) ProtoReflect 

func (x *AttestVersionInfo) ProtoReflect() protoreflect.Message

func (*AttestVersionInfo) Reset 

func (x *AttestVersionInfo) Reset()

func (*AttestVersionInfo) String 

func (x *AttestVersionInfo) String() string

type AttestVersionType 

type AttestVersionType int32
const (
	AttestVersionType_ATTEST_VERSION_TYPE_INVALID  AttestVersionType = 0
	AttestVersionType_ATTEST_VERSION_TYPE_EVE      AttestVersionType = 1 // BaseOS version
	AttestVersionType_ATTEST_VERSION_TYPE_FIRMWARE AttestVersionType = 2 // Firmware version (e.g. UEFI)
)

func (AttestVersionType) Descriptor 

func (AttestVersionType) Descriptor() protoreflect.EnumDescriptor

func (AttestVersionType) Enum 

func (x AttestVersionType) Enum() *AttestVersionType

func (AttestVersionType) EnumDescriptor deprecated 

func (AttestVersionType) EnumDescriptor() ([]byte, []int)

Deprecated: Use AttestVersionType.Descriptor instead.

func (AttestVersionType) Number 

func (x AttestVersionType) Number() protoreflect.EnumNumber

func (AttestVersionType) String 

func (x AttestVersionType) String() string

func (AttestVersionType) Type 

func (AttestVersionType) Type() protoreflect.EnumType

type AttestVolumeKey 

type AttestVolumeKey struct {
	KeyType AttestVolumeKeyType `` /* 130-byte string literal not displayed */
	Key     []byte              `protobuf:"bytes,2,opt,name=key,proto3" json:"key,omitempty"`
	// contains filtered or unexported fields
}

func (*AttestVolumeKey) Descriptor deprecated 

func (*AttestVolumeKey) Descriptor() ([]byte, []int)

Deprecated: Use AttestVolumeKey.ProtoReflect.Descriptor instead.

func (*AttestVolumeKey) GetKey 

func (x *AttestVolumeKey) GetKey() []byte

func (*AttestVolumeKey) GetKeyType 

func (x *AttestVolumeKey) GetKeyType() AttestVolumeKeyType

func (*AttestVolumeKey) ProtoMessage 

func (*AttestVolumeKey) ProtoMessage()

func (*AttestVolumeKey) ProtoReflect 

func (x *AttestVolumeKey) ProtoReflect() protoreflect.Message

func (*AttestVolumeKey) Reset 

func (x *AttestVolumeKey) Reset()

func (*AttestVolumeKey) String 

func (x *AttestVolumeKey) String() string

type AttestVolumeKeyData 

type AttestVolumeKeyData struct {
	EncryptedKey []byte `protobuf:"bytes,1,opt,name=encrypted_key,json=encryptedKey,proto3" json:"encrypted_key,omitempty"` //key in encrypted format
	DigestSha256 []byte `protobuf:"bytes,2,opt,name=digest_sha256,json=digestSha256,proto3" json:"digest_sha256,omitempty"` //SHA 256 digest of the key
	// contains filtered or unexported fields
}

func (*AttestVolumeKeyData) Descriptor deprecated 

func (*AttestVolumeKeyData) Descriptor() ([]byte, []int)

Deprecated: Use AttestVolumeKeyData.ProtoReflect.Descriptor instead.

func (*AttestVolumeKeyData) GetDigestSha256 

func (x *AttestVolumeKeyData) GetDigestSha256() []byte

func (*AttestVolumeKeyData) GetEncryptedKey 

func (x *AttestVolumeKeyData) GetEncryptedKey() []byte

func (*AttestVolumeKeyData) ProtoMessage 

func (*AttestVolumeKeyData) ProtoMessage()

func (*AttestVolumeKeyData) ProtoReflect 

func (x *AttestVolumeKeyData) ProtoReflect() protoreflect.Message

func (*AttestVolumeKeyData) Reset 

func (x *AttestVolumeKeyData) Reset()

func (*AttestVolumeKeyData) String 

func (x *AttestVolumeKeyData) String() string

type AttestVolumeKeyType 

type AttestVolumeKeyType int32
const (
	AttestVolumeKeyType_ATTEST_VOLUME_KEY_TYPE_INVALID AttestVolumeKeyType = 0
	AttestVolumeKeyType_ATTEST_VOLUME_KEY_TYPE_VSK     AttestVolumeKeyType = 1 //Volume storage key, for /persist/vault
)

func (AttestVolumeKeyType) Descriptor 

func (AttestVolumeKeyType) Descriptor() protoreflect.EnumDescriptor

func (AttestVolumeKeyType) Enum 

func (x AttestVolumeKeyType) Enum() *AttestVolumeKeyType

func (AttestVolumeKeyType) EnumDescriptor deprecated 

func (AttestVolumeKeyType) EnumDescriptor() ([]byte, []int)

Deprecated: Use AttestVolumeKeyType.Descriptor instead.

func (AttestVolumeKeyType) Number 

func (x AttestVolumeKeyType) Number() protoreflect.EnumNumber

func (AttestVolumeKeyType) String 

func (x AttestVolumeKeyType) String() string

func (AttestVolumeKeyType) Type 

func (AttestVolumeKeyType) Type() protoreflect.EnumType

type TpmEventDigest 

type TpmEventDigest struct {
	HashAlgo TpmHashAlgo `protobuf:"varint,1,opt,name=hash_algo,json=hashAlgo,proto3,enum=org.lfedge.eve.attest.TpmHashAlgo" json:"hash_algo,omitempty"`
	Digest   []byte      `protobuf:"bytes,2,opt,name=digest,proto3" json:"digest,omitempty"`
	// contains filtered or unexported fields
}

A hash algo, and corresponding digest derived using that algo

func (*TpmEventDigest) Descriptor deprecated 

func (*TpmEventDigest) Descriptor() ([]byte, []int)

Deprecated: Use TpmEventDigest.ProtoReflect.Descriptor instead.

func (*TpmEventDigest) GetDigest 

func (x *TpmEventDigest) GetDigest() []byte

func (*TpmEventDigest) GetHashAlgo 

func (x *TpmEventDigest) GetHashAlgo() TpmHashAlgo

func (*TpmEventDigest) ProtoMessage 

func (*TpmEventDigest) ProtoMessage()

func (*TpmEventDigest) ProtoReflect 

func (x *TpmEventDigest) ProtoReflect() protoreflect.Message

func (*TpmEventDigest) Reset 

func (x *TpmEventDigest) Reset()

func (*TpmEventDigest) String 

func (x *TpmEventDigest) String() string

type TpmEventLogEntry 

type TpmEventLogEntry struct {
	Index           uint32          `protobuf:"varint,1,opt,name=index,proto3" json:"index,omitempty"`                                              // Sequential index of event in the log
	PcrIndex        uint32          `protobuf:"varint,2,opt,name=pcr_index,json=pcrIndex,proto3" json:"pcr_index,omitempty"`                        // PCR index to which this event was measured
	EventType       uint32          `protobuf:"varint,3,opt,name=event_type,json=eventType,proto3" json:"event_type,omitempty"`                     // The type of this event
	Digest          *TpmEventDigest `protobuf:"bytes,4,opt,name=digest,proto3" json:"digest,omitempty"`                                             // The digest corresponding to this event
	EventDataBinary []byte          `protobuf:"bytes,5,opt,name=event_data_binary,json=eventDataBinary,proto3" json:"event_data_binary,omitempty"`  // The raw event data bytes
	EventDataString string          `protobuf:"bytes,6,opt,name=event_data_string,json=eventDataString,proto3" json:"event_data_string,omitempty"`  // Textual representation of the event data
	EventBinarySize uint32          `protobuf:"varint,7,opt,name=event_binary_size,json=eventBinarySize,proto3" json:"event_binary_size,omitempty"` // Size of binary data in bytes. We keep the size value when we omit the data
	// contains filtered or unexported fields
}

Taken from 5.2 Crypto Agile Log Entry Format, from https://trustedcomputinggroup.org/wp-content/uploads/EFI-Protocol-Specification-rev13-160330final.pdf

func (*TpmEventLogEntry) Descriptor deprecated 

func (*TpmEventLogEntry) Descriptor() ([]byte, []int)

Deprecated: Use TpmEventLogEntry.ProtoReflect.Descriptor instead.

func (*TpmEventLogEntry) GetDigest 

func (x *TpmEventLogEntry) GetDigest() *TpmEventDigest

func (*TpmEventLogEntry) GetEventBinarySize 

func (x *TpmEventLogEntry) GetEventBinarySize() uint32

func (*TpmEventLogEntry) GetEventDataBinary 

func (x *TpmEventLogEntry) GetEventDataBinary() []byte

func (*TpmEventLogEntry) GetEventDataString 

func (x *TpmEventLogEntry) GetEventDataString() string

func (*TpmEventLogEntry) GetEventType 

func (x *TpmEventLogEntry) GetEventType() uint32

func (*TpmEventLogEntry) GetIndex 

func (x *TpmEventLogEntry) GetIndex() uint32

func (*TpmEventLogEntry) GetPcrIndex 

func (x *TpmEventLogEntry) GetPcrIndex() uint32

func (*TpmEventLogEntry) ProtoMessage 

func (*TpmEventLogEntry) ProtoMessage()

func (*TpmEventLogEntry) ProtoReflect 

func (x *TpmEventLogEntry) ProtoReflect() protoreflect.Message

func (*TpmEventLogEntry) Reset 

func (x *TpmEventLogEntry) Reset()

func (*TpmEventLogEntry) String 

func (x *TpmEventLogEntry) String() string

type TpmHashAlgo 

type TpmHashAlgo int32

Hash algo used in digests, and PCR Extend operations 

const (
	TpmHashAlgo_TPM_HASH_ALGO_INVALID TpmHashAlgo = 0
	TpmHashAlgo_TPM_HASH_ALGO_SHA1    TpmHashAlgo = 1
	TpmHashAlgo_TPM_HASH_ALGO_SHA256  TpmHashAlgo = 2
	TpmHashAlgo_TPM_HASH_ALGO_SHA512  TpmHashAlgo = 3
)

func (TpmHashAlgo) Descriptor 

func (TpmHashAlgo) Descriptor() protoreflect.EnumDescriptor

func (TpmHashAlgo) Enum 

func (x TpmHashAlgo) Enum() *TpmHashAlgo

func (TpmHashAlgo) EnumDescriptor deprecated 

func (TpmHashAlgo) EnumDescriptor() ([]byte, []int)

Deprecated: Use TpmHashAlgo.Descriptor instead.

func (TpmHashAlgo) Number 

func (x TpmHashAlgo) Number() protoreflect.EnumNumber

func (TpmHashAlgo) String 

func (x TpmHashAlgo) String() string

func (TpmHashAlgo) Type 

func (TpmHashAlgo) Type() protoreflect.EnumType

type TpmPCRValue 

type TpmPCRValue struct {
	Index    uint32      `protobuf:"varint,1,opt,name=index,proto3" json:"index,omitempty"`                                                              //PCR index
	HashAlgo TpmHashAlgo `protobuf:"varint,2,opt,name=hash_algo,json=hashAlgo,proto3,enum=org.lfedge.eve.attest.TpmHashAlgo" json:"hash_algo,omitempty"` //SHA1/SHA256/SHA384/SHA256
	Value    []byte      `protobuf:"bytes,3,opt,name=value,proto3" json:"value,omitempty"`                                                               //value in PCR
	// contains filtered or unexported fields
}

Holds one single PCR value from TPM, from a particular hash bank

func (*TpmPCRValue) Descriptor deprecated 

func (*TpmPCRValue) Descriptor() ([]byte, []int)

Deprecated: Use TpmPCRValue.ProtoReflect.Descriptor instead.

func (*TpmPCRValue) GetHashAlgo 

func (x *TpmPCRValue) GetHashAlgo() TpmHashAlgo

func (*TpmPCRValue) GetIndex 

func (x *TpmPCRValue) GetIndex() uint32

func (*TpmPCRValue) GetValue 

func (x *TpmPCRValue) GetValue() []byte

func (*TpmPCRValue) ProtoMessage 

func (*TpmPCRValue) ProtoMessage()

func (*TpmPCRValue) ProtoReflect 

func (x *TpmPCRValue) ProtoReflect() protoreflect.Message

func (*TpmPCRValue) Reset 

func (x *TpmPCRValue) Reset()

func (*TpmPCRValue) String 

func (x *TpmPCRValue) String() string

type ZAttestNonceResp 

type ZAttestNonceResp struct {
	Nonce []byte `protobuf:"bytes,1,opt,name=nonce,proto3" json:"nonce,omitempty"` //nonce to use in quote generation
	// contains filtered or unexported fields
}

func (*ZAttestNonceResp) Descriptor deprecated 

func (*ZAttestNonceResp) Descriptor() ([]byte, []int)

Deprecated: Use ZAttestNonceResp.ProtoReflect.Descriptor instead.

func (*ZAttestNonceResp) GetNonce 

func (x *ZAttestNonceResp) GetNonce() []byte

func (*ZAttestNonceResp) ProtoMessage 

func (*ZAttestNonceResp) ProtoMessage()

func (*ZAttestNonceResp) ProtoReflect 

func (x *ZAttestNonceResp) ProtoReflect() protoreflect.Message

func (*ZAttestNonceResp) Reset 

func (x *ZAttestNonceResp) Reset()

func (*ZAttestNonceResp) String 

func (x *ZAttestNonceResp) String() string

type ZAttestQuote 

type ZAttestQuote struct {
	AttestData []byte                `protobuf:"bytes,1,opt,name=attestData,proto3" json:"attestData,omitempty"`                // Nonce is included in attestData, see comment above
	Signature  []byte                `protobuf:"bytes,2,opt,name=signature,proto3" json:"signature,omitempty"`                  // Signature to verify attestData
	PcrValues  []*TpmPCRValue        `protobuf:"bytes,3,rep,name=pcr_values,json=pcrValues,proto3" json:"pcr_values,omitempty"` // Current values of TPM PCRs 0-15
	EventLog   []*TpmEventLogEntry   `protobuf:"bytes,4,rep,name=event_log,json=eventLog,proto3" json:"event_log,omitempty"`    // TPM Event log
	Versions   []*AttestVersionInfo  `protobuf:"bytes,5,rep,name=versions,proto3" json:"versions,omitempty"`                    // Versions of various software packages, as defined by VersionType
	GpsInfo    *AttestGPSCoordinates `protobuf:"bytes,6,opt,name=gps_info,json=gpsInfo,proto3" json:"gps_info,omitempty"`       // Geo-Coordinates of the device
	// contains filtered or unexported fields
}

attestData is taken from TPMS_ATTEST Table 2:123) in https://trustedcomputinggroup.org/wp-content/uploads/TPM-Rev-2.0-Part-2-Structures-01.38.pdf

func (*ZAttestQuote) Descriptor deprecated 

func (*ZAttestQuote) Descriptor() ([]byte, []int)

Deprecated: Use ZAttestQuote.ProtoReflect.Descriptor instead.

func (*ZAttestQuote) GetAttestData 

func (x *ZAttestQuote) GetAttestData() []byte

func (*ZAttestQuote) GetEventLog 

func (x *ZAttestQuote) GetEventLog() []*TpmEventLogEntry

func (*ZAttestQuote) GetGpsInfo 

func (x *ZAttestQuote) GetGpsInfo() *AttestGPSCoordinates

func (*ZAttestQuote) GetPcrValues 

func (x *ZAttestQuote) GetPcrValues() []*TpmPCRValue

func (*ZAttestQuote) GetSignature 

func (x *ZAttestQuote) GetSignature() []byte

func (*ZAttestQuote) GetVersions 

func (x *ZAttestQuote) GetVersions() []*AttestVersionInfo

func (*ZAttestQuote) ProtoMessage 

func (*ZAttestQuote) ProtoMessage()

func (*ZAttestQuote) ProtoReflect 

func (x *ZAttestQuote) ProtoReflect() protoreflect.Message

func (*ZAttestQuote) Reset 

func (x *ZAttestQuote) Reset()

func (*ZAttestQuote) String 

func (x *ZAttestQuote) String() string

type ZAttestQuoteResp 

type ZAttestQuoteResp struct {
	Response       ZAttestResponseCode `protobuf:"varint,1,opt,name=response,proto3,enum=org.lfedge.eve.attest.ZAttestResponseCode" json:"response,omitempty"` // Result of quote validation
	IntegrityToken []byte              `protobuf:"bytes,2,opt,name=integrity_token,json=integrityToken,proto3" json:"integrity_token,omitempty"`               // Valid if response is ATTEST_RESPONSE_SUCCESS, contains integrity token for device to
	// Cache and present in the next config request
	Keys []*AttestVolumeKey `protobuf:"bytes,3,rep,name=keys,proto3" json:"keys,omitempty"` // Valid if response is ATTEST_RESPONSE_SUCCESS, contains keys of type KeyType to unlock
	// contains filtered or unexported fields
}

func (*ZAttestQuoteResp) Descriptor deprecated 

func (*ZAttestQuoteResp) Descriptor() ([]byte, []int)

Deprecated: Use ZAttestQuoteResp.ProtoReflect.Descriptor instead.

func (*ZAttestQuoteResp) GetIntegrityToken 

func (x *ZAttestQuoteResp) GetIntegrityToken() []byte

func (*ZAttestQuoteResp) GetKeys 

func (x *ZAttestQuoteResp) GetKeys() []*AttestVolumeKey

func (*ZAttestQuoteResp) GetResponse 

func (x *ZAttestQuoteResp) GetResponse() ZAttestResponseCode

func (*ZAttestQuoteResp) ProtoMessage 

func (*ZAttestQuoteResp) ProtoMessage()

func (*ZAttestQuoteResp) ProtoReflect 

func (x *ZAttestQuoteResp) ProtoReflect() protoreflect.Message

func (*ZAttestQuoteResp) Reset 

func (x *ZAttestQuoteResp) Reset()

func (*ZAttestQuoteResp) String 

func (x *ZAttestQuoteResp) String() string

type ZAttestReq 

type ZAttestReq struct {
	ReqType     ZAttestReqType     `protobuf:"varint,1,opt,name=reqType,proto3,enum=org.lfedge.eve.attest.ZAttestReqType" json:"reqType,omitempty"` //type of the request
	Quote       *ZAttestQuote      `protobuf:"bytes,2,opt,name=quote,proto3" json:"quote,omitempty"`                                                //attestation quote msg
	Certs       []*certs.ZCert     `protobuf:"bytes,3,rep,name=certs,proto3" json:"certs,omitempty"`                                                //X509 certs in .PEM format, signed by device certificate
	StorageKeys *AttestStorageKeys `protobuf:"bytes,4,opt,name=storage_keys,json=storageKeys,proto3" json:"storage_keys,omitempty"`                 //encrypted secrets to be saved by the Controller, like encrypted keys for the volume storage vaults
	// contains filtered or unexported fields
}

 This is the request payload for POST /api/v2/edgeDevice/id/<uuid>/attest The message is assumed to be protected by signing envelope

func (*ZAttestReq) Descriptor deprecated 

func (*ZAttestReq) Descriptor() ([]byte, []int)

Deprecated: Use ZAttestReq.ProtoReflect.Descriptor instead.

func (*ZAttestReq) GetCerts 

func (x *ZAttestReq) GetCerts() []*certs.ZCert

func (*ZAttestReq) GetQuote 

func (x *ZAttestReq) GetQuote() *ZAttestQuote

func (*ZAttestReq) GetReqType 

func (x *ZAttestReq) GetReqType() ZAttestReqType

func (*ZAttestReq) GetStorageKeys 

func (x *ZAttestReq) GetStorageKeys() *AttestStorageKeys

func (*ZAttestReq) ProtoMessage 

func (*ZAttestReq) ProtoMessage()

func (*ZAttestReq) ProtoReflect 

func (x *ZAttestReq) ProtoReflect() protoreflect.Message

func (*ZAttestReq) Reset 

func (x *ZAttestReq) Reset()

func (*ZAttestReq) String 

func (x *ZAttestReq) String() string

type ZAttestReqType 

type ZAttestReqType int32
const (
	ZAttestReqType_ATTEST_REQ_NONE              ZAttestReqType = 0
	ZAttestReqType_ATTEST_REQ_CERT              ZAttestReqType = 1 //EVE X.509 certificates
	ZAttestReqType_ATTEST_REQ_NONCE             ZAttestReqType = 2 //nonce request to Controller
	ZAttestReqType_ATTEST_REQ_QUOTE             ZAttestReqType = 3 //quote msg
	ZAttestReqType_Z_ATTEST_REQ_TYPE_STORE_KEYS ZAttestReqType = 4 //to store device keys in Controller
)

func (ZAttestReqType) Descriptor 

func (ZAttestReqType) Descriptor() protoreflect.EnumDescriptor

func (ZAttestReqType) Enum 

func (x ZAttestReqType) Enum() *ZAttestReqType

func (ZAttestReqType) EnumDescriptor deprecated 

func (ZAttestReqType) EnumDescriptor() ([]byte, []int)

Deprecated: Use ZAttestReqType.Descriptor instead.

func (ZAttestReqType) Number 

func (x ZAttestReqType) Number() protoreflect.EnumNumber

func (ZAttestReqType) String 

func (x ZAttestReqType) String() string

func (ZAttestReqType) Type 

func (ZAttestReqType) Type() protoreflect.EnumType

type ZAttestRespType 

type ZAttestRespType int32
const (
	ZAttestRespType_ATTEST_RESP_NONE              ZAttestRespType = 0
	ZAttestRespType_ATTEST_RESP_CERT              ZAttestRespType = 1 //response to cert msg
	ZAttestRespType_ATTEST_RESP_NONCE             ZAttestRespType = 2 //response to quote request
	ZAttestRespType_ATTEST_RESP_QUOTE_RESP        ZAttestRespType = 3 //response to quote msg
	ZAttestRespType_Z_ATTEST_RESP_TYPE_STORE_KEYS ZAttestRespType = 4 //response to Z_ATTEST_REQ_TYPE_STORE_KEYS
)

func (ZAttestRespType) Descriptor 

func (ZAttestRespType) Descriptor() protoreflect.EnumDescriptor

func (ZAttestRespType) Enum 

func (x ZAttestRespType) Enum() *ZAttestRespType

func (ZAttestRespType) EnumDescriptor deprecated 

func (ZAttestRespType) EnumDescriptor() ([]byte, []int)

Deprecated: Use ZAttestRespType.Descriptor instead.

func (ZAttestRespType) Number 

func (x ZAttestRespType) Number() protoreflect.EnumNumber

func (ZAttestRespType) String 

func (x ZAttestRespType) String() string

func (ZAttestRespType) Type 

func (ZAttestRespType) Type() protoreflect.EnumType

type ZAttestResponse 

type ZAttestResponse struct {
	RespType        ZAttestRespType        `protobuf:"varint,1,opt,name=respType,proto3,enum=org.lfedge.eve.attest.ZAttestRespType" json:"respType,omitempty"` //type of the response
	Nonce           *ZAttestNonceResp      `protobuf:"bytes,2,opt,name=nonce,proto3" json:"nonce,omitempty"`                                                   //nonce from Controller
	QuoteResp       *ZAttestQuoteResp      `protobuf:"bytes,3,opt,name=quoteResp,proto3" json:"quoteResp,omitempty"`                                           //attest quote response from Controller
	StorageKeysResp *AttestStorageKeysResp `protobuf:"bytes,4,opt,name=storage_keys_resp,json=storageKeysResp,proto3" json:"storage_keys_resp,omitempty"`      //attest storage_keys response from Controller
	// contains filtered or unexported fields
}

 This is the response payload for POST /api/v2/edgeDevice/id/<uuid>/attest The message is assumed to be protected by signing envelope

func (*ZAttestResponse) Descriptor deprecated 

func (*ZAttestResponse) Descriptor() ([]byte, []int)

Deprecated: Use ZAttestResponse.ProtoReflect.Descriptor instead.

func (*ZAttestResponse) GetNonce 

func (x *ZAttestResponse) GetNonce() *ZAttestNonceResp

func (*ZAttestResponse) GetQuoteResp 

func (x *ZAttestResponse) GetQuoteResp() *ZAttestQuoteResp

func (*ZAttestResponse) GetRespType 

func (x *ZAttestResponse) GetRespType() ZAttestRespType

func (*ZAttestResponse) GetStorageKeysResp 

func (x *ZAttestResponse) GetStorageKeysResp() *AttestStorageKeysResp

func (*ZAttestResponse) ProtoMessage 

func (*ZAttestResponse) ProtoMessage()

func (*ZAttestResponse) ProtoReflect 

func (x *ZAttestResponse) ProtoReflect() protoreflect.Message

func (*ZAttestResponse) Reset 

func (x *ZAttestResponse) Reset()

func (*ZAttestResponse) String 

func (x *ZAttestResponse) String() string

type ZAttestResponseCode 

type ZAttestResponseCode int32
const (
	ZAttestResponseCode_Z_ATTEST_RESPONSE_CODE_INVALID        ZAttestResponseCode = 0
	ZAttestResponseCode_Z_ATTEST_RESPONSE_CODE_SUCCESS        ZAttestResponseCode = 1 //Attestation successful
	ZAttestResponseCode_Z_ATTEST_RESPONSE_CODE_NONCE_MISMATCH ZAttestResponseCode = 2 //Attestation failed due to nonce mismatch
	ZAttestResponseCode_Z_ATTEST_RESPONSE_CODE_NO_CERT_FOUND  ZAttestResponseCode = 3 //There was no attestation certificate in Controller to validate attestation quote
	ZAttestResponseCode_Z_ATTEST_RESPONSE_CODE_QUOTE_FAILED   ZAttestResponseCode = 4 //Attestation failed due to quote mismatch
)

func (ZAttestResponseCode) Descriptor 

func (ZAttestResponseCode) Descriptor() protoreflect.EnumDescriptor

func (ZAttestResponseCode) Enum 

func (x ZAttestResponseCode) Enum() *ZAttestResponseCode

func (ZAttestResponseCode) EnumDescriptor deprecated 

func (ZAttestResponseCode) EnumDescriptor() ([]byte, []int)

Deprecated: Use ZAttestResponseCode.Descriptor instead.

func (ZAttestResponseCode) Number 

func (x ZAttestResponseCode) Number() protoreflect.EnumNumber

func (ZAttestResponseCode) String 

func (x ZAttestResponseCode) String() string

func (ZAttestResponseCode) Type 

func (ZAttestResponseCode) Type() protoreflect.EnumType

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.