dice

package module

v0.0.1 Latest Latest Go to latest Published: Feb 2, 2021 License: Apache-2.0 Imports: 3 Imported by: 2

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Implementation of the attestation extension defined in:

https://trustedcomputinggroup.org/wp-content/uploads/TCG_DICE_Attestation_Architecture_r22_02dec2020.pdf

This section is empty.

View Source

var DiceOID = asn1.ObjectIdentifier{2, 23, 133, 5, 4, 1}

DiceOID is the standard object identifier for the DICE extension

This section is empty.

type CompositeDeviceID struct {
	Version  int
	DeviceID SubjectPublicKeyInfo
	Fwid     FirmwareID
}

CompositeDeviceID combines the firmware id with

type DiceData struct {
	Oid               asn1.ObjectIdentifier
	CompositeDeviceID CompositeDeviceID
}

DiceData is the attestation data encapsulated in the DiceExtension

type DiceExtension struct {
	DiceData `asn1:"tag:0,implicit,optional"`
}

DiceExtension is the x509 v3 extension for DICE attestation.

func (re *DiceExtension) UnmarshalDER(data []byte) ([]byte, error)

UnmarshalDER populates the DiceExtension from the provided DER-encoded data extracted from the certificate extension.

type FirmwareID struct {
	HashAlg asn1.ObjectIdentifier
	Fwid    []byte
}

FirmwareID contains the digest that is result of applying the specified hash algorithm over the object being measured.

type SubjectPublicKeyInfo struct {
	Algorithm        pkix.AlgorithmIdentifier
	SubjectPublicKey asn1.BitString
}

This structure is defined in pkix package but is not exported, so re-definding here.