Skip to main content

IgvmAttestTestConfig

get_resources::ged

Enum IgvmAttestTestConfig 

Source 
pub enum IgvmAttestTestConfig {
    AkCertRequestFailureAndRetry,
    AkCertRequestFailureAndRetryExtended,
    AkCertPersistentAcrossBoot,
    AkCertPersistentAcrossBootExtended,
    KeyReleaseFailureSkipHwUnsealing,
    KeyReleaseFailure,
}
Expand description

Configuration for the GED’s IGVM Attest request handler in test scenarios.

Non-extended variants (AkCertRequestFailureAndRetry, AkCertPersistentAcrossBoot) are used by OpenVMM-hosted tests that invoke the GED directly. Extended variants and the KeyReleaseFailure* variants are used by Hyper-V tests via the test_igvm_agent_rpc_server, where the Hyper-V boot sequence (including initial_reboot) generates extra IGVM attest requests before the test code runs.

Variants§

§

AkCertRequestFailureAndRetry

Config for testing AK cert retry after failure.

Plan: two failures then one success. Used by OpenVMM-hosted tests where no extra boot-time requests occur.

§

AkCertRequestFailureAndRetryExtended

Config for testing AK cert retry after failure — extended plan for Hyper-V tests.

Hyper-V VMs go through an initial_reboot and may generate multiple background AK cert requests during the initial boot and the reboot. The extra failure actions absorb those requests so the final success action is available when the guest test code runs.

§

AkCertPersistentAcrossBoot

Config for testing AK cert persistency across boots.

Plan: one success then always-no-response. Used by OpenVMM-hosted tests where no extra boot-time requests occur.

§

AkCertPersistentAcrossBootExtended

Config for testing AK cert persistency across boots — extended plan for Hyper-V tests.

Hyper-V VMs go through an initial_reboot that can consume the first success action before the test code runs. The extra RespondSuccess ensures the cert is still provisioned after the reboot, so the subsequent boot can validate that the cert is served from the persistent cache.

§

KeyReleaseFailureSkipHwUnsealing

Config for testing the skip_hw_unsealing signal from the IGVM agent.

When the agent responds with skip_hw_unsealing, the attestation code skips the hardware unsealing step even if the hardware key protector and derived keys are available. This causes initialize_platform_security to fall through to a scheme-specific error (KP / GSP / GspById), making VMGS unlock fail.

§

KeyReleaseFailure

Config for testing key release failure without the skip_hw_unsealing signal.

When the agent responds with a plain failure (no skip signal), the attestation code falls back to hardware unsealing using the hardware key protector saved on the previous successful boot. The VM should boot normally.

Trait Implementations§

Source§

impl Clone for IgvmAttestTestConfig

Source§

fn clone(&self) -> IgvmAttestTestConfig

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for IgvmAttestTestConfig

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl DefaultEncoding for IgvmAttestTestConfig

Source§

type Encoding = OneofEncoder

The encoding to use for the serialization. Read more
Source§

impl Inspect for IgvmAttestTestConfig

Source§

fn inspect(&self, req: Request<'_>)

Inspects the object.
Source§

impl<'encoding> OneofDecode<'encoding, Resource> for IgvmAttestTestConfig

Source§

fn read_variant( item: &mut InplaceOption<'_, Self>, n: u32, field: FieldReader<'encoding, '_, Resource>, ) -> Result<()>

Read the specified variant from the reader.
Source§

impl OneofEncode<Resource> for IgvmAttestTestConfig

Source§

fn write_variant(self, writer: MessageWriter<'_, '_, Resource>)

Write the variant to the writer.
Source§

fn compute_variant_size(&mut self, sizer: MessageSizer<'_>)

Compute the size of the variant.
Source§

impl Copy for IgvmAttestTestConfig

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

§

impl<T> Instrument for T

§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided [Span], returning an Instrumented wrapper. Read more
§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

§

impl<T> MeshField for T
where T: DefaultEncoding, <T as DefaultEncoding>::Encoding: FieldEncode<T, Resource> + for<'a> FieldDecode<'a, T, Resource> + Send + Sync,

§

type Encoding = <T as DefaultEncoding>::Encoding

§

impl<T> MeshPayload for T
where T: DefaultEncoding + Any + Send + 'static, <T as DefaultEncoding>::Encoding: MessageEncode<T, Resource> + for<'a> MessageDecode<'a, T, Resource> + FieldEncode<T, Resource> + for<'a> FieldDecode<'a, T, Resource> + Send + Sync,

§

type Encoding = <T as DefaultEncoding>::Encoding

§

impl<T> SerializeMessage for T
where T: 'static + MeshPayload + Send,

§

type Concrete = T

The underlying concrete message type.
§

fn compute_message_size(&mut self, sizer: MessageSizer<'_>)

Computes the message size, as in [MessageEncode::compute_message_size].
§

fn write_message(self, writer: MessageWriter<'_, '_, Resource>)

Writes the message, as in [MessageEncode::write_message].
§

fn extract(self) -> <T as SerializeMessage>::Concrete

Extract the concrete message.
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<T> WithSubscriber for T

§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a [WithDispatch] wrapper. Read more
§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a [WithDispatch] wrapper. Read more