attestation: add awsSEVSNP as new variant (#1900)

* variant: move into internal/attestation * attesation: move aws attesation into subfolder nitrotpm * config: add aws-sev-snp variant * cli: add tf option to enable AWS SNP For now the implementations in aws/nitrotpm and aws/snp are identical. They both contain the aws/nitrotpm impl. A separate commit will add the actual attestation logic.
2025-05-31 20:14:26 -04:00 · 2023-06-09 15:41:02 +02:00 · 2023-06-09 15:41:02 +02:00 · 8f21972aec
commit 8f21972aec
parent 947d0cb20a
110 changed files with 993 additions and 215 deletions
--- a/internal/config/config_test.go
+++ b/internal/config/config_test.go
@ -276,7 +276,7 @@ func TestNewWithDefaultOptions(t *testing.T) {
 }

 func TestValidate(t *testing.T) {
-	const defaultErrCount = 32 // expect this number of error messages by default because user-specific values are not set and multiple providers are defined by default
+	const defaultErrCount = 33 // expect this number of error messages by default because user-specific values are not set and multiple providers are defined by default
 	const azErrCount = 7
 	const gcpErrCount = 6

@ -499,11 +499,11 @@ func TestConfig_UpdateMeasurements(t *testing.T) {
 	{ // AWS
 		conf := Default()
 		conf.RemoveProviderAndAttestationExcept(cloudprovider.AWS)
-		for k := range conf.Attestation.AWSNitroTPM.Measurements {
-			delete(conf.Attestation.AWSNitroTPM.Measurements, k)
+		for k := range conf.Attestation.AWSSEVSNP.Measurements {
+			delete(conf.Attestation.AWSSEVSNP.Measurements, k)
 		}
 		conf.UpdateMeasurements(newMeasurements)
-		assert.Equal(newMeasurements, conf.Attestation.AWSNitroTPM.Measurements)
+		assert.Equal(newMeasurements, conf.Attestation.AWSSEVSNP.Measurements)
 	}
 	{ // Azure
 		conf := Default()