api: for Azure attestationconfigapi use TCB values from SNP report instead of MAA token (#2429)

2025-05-02 06:16:08 -04:00 · 2023-10-17 17:36:50 +02:00 · 2023-10-17 17:36:50 +02:00 · 5819a11d25
commit 5819a11d25
parent 0c89f57ac5
11 changed files with 211 additions and 110 deletions
--- a/internal/verify/verify.go
+++ b/internal/verify/verify.go
@ -13,9 +13,6 @@ the attestationconfigapi upload tool through JSON serialization.
 package verify

 import (
-	"crypto/x509"
-	"fmt"
-
 	"github.com/golang-jwt/jwt/v5"
 )

@ -29,12 +26,12 @@ type Report struct {

 // Certificate contains the certificate data and additional information.
 type Certificate struct {
-	*x509.Certificate `json:"certificate"`
-	CertTypeName      string     `json:"cert_type_name"`
-	StructVersion     uint8      `json:"struct_version"`
-	ProductName       string     `json:"product_name"`
-	HardwareID        []byte     `json:"hardware_id"`
-	TCBVersion        TCBVersion `json:"tcb_version"`
+	CertificatePEM string     `json:"certificate"`
+	CertTypeName   string     `json:"cert_type_name"`
+	StructVersion  uint8      `json:"struct_version"`
+	ProductName    string     `json:"product_name"`
+	HardwareID     []byte     `json:"hardware_id"`
+	TCBVersion     TCBVersion `json:"tcb_version"`
 }

 // TCBVersion contains the TCB version data.
@ -57,9 +54,9 @@ type PlatformInfo struct {

 // SignerInfo contains the signer information.
 type SignerInfo struct {
-	AuthorKey   bool         `json:"author_key_en"`
-	MaskChipKey bool         `json:"mask_chip_key"`
-	SigningKey  fmt.Stringer `json:"signing_key"`
+	AuthorKey   bool   `json:"author_key_en"`
+	MaskChipKey bool   `json:"mask_chip_key"`
+	SigningKey  string `json:"signing_key"`
 }

 // SNPReport contains the SNP report data.