2024-01-24 09:10:15 -05:00
|
|
|
/*
|
|
|
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
|
|
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
package tdx implements attestation for TDX on Azure.
|
|
|
|
|
|
|
|
|
|
Quotes are generated using an Azure provided vTPM and the IMDS API.
|
|
|
|
|
They are verified using the go-tdx-guest library.
|
|
|
|
|
|
|
|
|
|
More specifically:
|
|
|
|
|
- The vTPM is used to collected a TPM attestation and a Hardware Compatibility Layer (HCL) report.
|
|
|
|
|
- The HCL report is sent to the IMDS API to generate a TDX quote.
|
|
|
|
|
- The quote is verified using the go-tdx-guest library.
|
|
|
|
|
- The quote's report data can be used to verify the TPM's attestation key.
|
|
|
|
|
- The attestation key can be used to verify the TPM attestation.
|
|
|
|
|
*/
|
|
|
|
|
package tdx
|
|
|
|
|
|
2024-06-12 07:18:27 -04:00
|
|
|
// InstanceInfo wraps the TDX report with additional Azure specific runtime data.
|
|
|
|
|
type InstanceInfo struct {
|
2024-01-24 09:10:15 -05:00
|
|
|
AttestationReport []byte
|
|
|
|
|
RuntimeData []byte
|
|
|
|
|
}
|
