Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-10-01 01:36:09 -04:00
Code Issues Packages Projects Releases Wiki Activity
7c5556864b
constellation/internal
History
Otto Bittner 7c5556864b AB#2333: Add AMD SNP-based attestation 
Currently only available on Azure CVMs.

* Get the public attestation key from the TPM.
* Get the snp report from the TPM.
* Get the VCEK and ASK certificate from the metadata api.
* Verify VCEK using hardcoded root key (ARK)
* Verify SNP report using VCEK
* Verify HCLAkPub using SNP report by comparing
AK with runtimeData
* Extend unittest

Co-authored-by: Thomas Tendyck <51411342+thomasten@users.noreply.github.com>
Co-authored-by: Daniel Weiße <dw@edgeless.systems>
2022-08-29 16:29:33 +02:00
..
atls AB#2316 Configurable enforced PCRs (#361) 2022-08-12 15:59:45 +02:00
attestation AB#2333: Add AMD SNP-based attestation 2022-08-29 16:29:33 +02:00
azureshared Bootstrapper 2022-07-14 17:25:18 +02:00
cloud move nodestate and role 2022-08-29 16:07:55 +02:00
config create on Azure: Allow toggling between CVMs / Trusted Launch VMs (#401) 2022-08-25 15:24:31 +02:00
constants Use multiple loadbalancers on GCP 2022-08-23 18:11:20 +02:00
crds Deploy operator-lifecycle-manager (OLM), node-maintenance-operator (NMO) and constellation-node-operator 2022-08-11 10:48:50 +02:00
crypto AB#2333: Add AMD SNP-based attestation 2022-08-29 16:29:33 +02:00
deploy Add debugd ssh key distribution 2022-08-23 18:11:20 +02:00
file AB#2278 Remove hardcoded values from config (#346) 2022-08-08 11:04:17 +02:00
gcpshared Add goleak to all tests (#227) 2022-06-30 15:24:36 +02:00
grpc AB#2316 Configurable enforced PCRs (#361) 2022-08-12 15:59:45 +02:00
iproute Use multiple loadbalancers on GCP 2022-08-23 18:11:20 +02:00
kubernetes Move cloud metadata packages and kubernetes resources marshaling to internal 2022-08-29 16:07:55 +02:00
license AB#2360 enterprise build tag (#397) 2022-08-25 14:06:29 +02:00
logger linter cleanup (#344) 2022-08-05 15:30:23 +02:00
nodestate move nodestate and role 2022-08-29 16:07:55 +02:00
oid atls: make client cfg reusable 2022-06-15 13:04:56 +02:00
retry AB#2258: Fix flacky retry_test.go 2022-08-05 18:58:47 +02:00
role move nodestate and role 2022-08-29 16:07:55 +02:00
sigstore AB#2258: Fix flacky retry_test.go 2022-08-05 18:58:47 +02:00
state Manually manage GCP service accounts 2022-08-24 11:44:05 +02:00
versions Update versions 2022-08-19 18:22:55 +02:00
watcher AB#2316 Configurable enforced PCRs (#361) 2022-08-12 15:59:45 +02:00