Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open source #192

Merged
merged 26 commits into from
Jun 24, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
26 commits
Select commit Hold shift + click to select a range
39b0f7f
update .gitignore
smo4201 Jun 14, 2024
87cb897
update go modules
smo4201 Jun 14, 2024
d2d9faa
jsoncannonicalizer: add open source project
smo4201 Jun 14, 2024
58be690
measure: add module for measuring OCI runtime bundles
smo4201 Jun 14, 2024
68c3c27
measure: add unit tests
smo4201 Jun 14, 2024
6d4d371
tools/measure-bundle: add standalone tool
smo4201 Jun 14, 2024
28eda8b
cmcd: Add measure API call
smo4201 Jun 14, 2024
a0f67ac
cmc: add configuration for container measurements
smo4201 Jun 14, 2024
232e046
grpcapi: add measure API call
smo4201 Jun 14, 2024
a1f03db
api: add measure api call
smo4201 Jun 14, 2024
6da2a42
tpmdriver: add functionality to read measurement lists
smo4201 Jun 14, 2024
e2387dc
testtool: Add functionality to test container measurements
smo4201 Jun 14, 2024
ad62fa4
attestationreport/attestationreport.go: add container config
smo4201 Jun 14, 2024
5d04f07
attestationreport/attestationreport.go: add support for environment
smo4201 Jun 14, 2024
c3aeec7
attestationreport/attestationreport.go: add app results to validation
smo4201 Jun 14, 2024
9a30897
attestationreport/validationreport.go: add support for environment
smo4201 Jun 14, 2024
b746ef3
attestationreport/sw.go: delete obsolete sw module
smo4201 Jun 14, 2024
63ca954
attestationreport/tpm.go: more detailed measurement results
smo4201 Jun 14, 2024
6f714b0
attestationreport/snp_test.go: renaming
smo4201 Jun 14, 2024
446926b
doc: update documentation
smo4201 Jun 14, 2024
5da7477
example-setup/setup-cmc: allow specifying the container engine
smo4201 Jun 14, 2024
b207523
example-setup/update-container-manifest: add script
smo4201 Jun 14, 2024
fd778d6
example-setup/update-container-manifest-live: add script
smo4201 Jun 14, 2024
452d4b9
treewide: refactor attestationreport module
smo4201 Jun 24, 2024
a97e54c
example setup: updated scripts
smo4201 Jun 24, 2024
686d3fc
measure: minor changes
smo4201 Jun 24, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 4 additions & 1 deletion .gitignore
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,9 @@ est/estserver/estserver
tools/cmc-signing-tool/cmc-signing-tool
tools/cmc-converter/cmc-converter
tools/fmspc-retrieval-tool/fmspc-retrieval-tool
tools/measurefs/measurefs
tools/containerd-shim-cmc-v1/containerd-shim-cmc-v1
tools/measure-bundle/measure-bundle
tpm/test_encrypted_ak.json
example-setup/data-cmc/
example-setup/**/*.cbor
Expand All @@ -20,4 +23,4 @@ tpmdriver/test_encrypted_ak.json
est/server/server
attestationreport/cache/*
testtool/private.pem
testtool/public.pem
testtool/public.pem
19 changes: 15 additions & 4 deletions api/api.go
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
// Copyright (c) 2021 Fraunhofer AISEC
// Copyright (c) 2021 - 2024 Fraunhofer AISEC
// Fraunhofer-Gesellschaft zur Foerderung der angewandten Forschung e.V.
//
// Licensed under the Apache License, Version 2.0 (the "License");
Expand All @@ -13,7 +13,7 @@
// See the License for the specific language governing permissions and
// limitations under the License.

// Contains the API definitions for the CoAP and unix domain socket API
// Contains the API definitions for the CoAP and socket API.
// The gRPC API is in a separate file
package api

Expand Down Expand Up @@ -54,6 +54,16 @@ type VerificationResponse struct {
VerificationResult []byte `json:"verificationResult" cbor:"0,keyasint"`
}

type MeasureRequest struct {
Name string `json:"name,omitempty" cbor:"0,keyasint,omitempty"`
ConfigSha256 []byte `json:"configSha256,omitempty" cbor:"1,keyasint,omitempty"`
RootfsSha256 []byte `json:"rootfsSha256,omitempty" cbor:"2,keyasint,omitempty"`
}

type MeasureResponse struct {
Success bool `json:"success" cbor:"0,keyasint"`
}

type TLSSignRequest struct {
Id string `json:"id" cbor:"0,keyasint"`
Content []byte `json:"content" cbor:"1,keyasint"`
Expand Down Expand Up @@ -110,8 +120,9 @@ const (
TypeError uint32 = 0
TypeAttest uint32 = 1
TypeVerify uint32 = 2
TypeTLSSign uint32 = 3
TypeTLSCert uint32 = 4
TypeMeasure uint32 = 3
TypeTLSSign uint32 = 4
TypeTLSCert uint32 = 5
)

// Converts Protobuf hashtype to crypto.SignerOpts
Expand Down
Loading
Loading