Module get

The module helps preparing requests and parsing responses that are sent to and received from the IGVm agent runs on the host via GET IGVM_ATTEST host request.

Modules

runtime_claims

Definition of the runt-time claims, which will be appended to the IgvmAttestRequest in raw bytes.

Structs

IgvmAttestAkCertResponseHeader

The response header for AK_CERT_REQUEST (C-style struct)

IgvmAttestHashType

Hash algorithm used for content of report data (C-style enum)

IgvmAttestKeyReleaseResponseHeader

The response header for KEY_RELEASE_REQUEST (C-style struct)

IgvmAttestReportType

TEE attestation report type (C-style enum)

IgvmAttestRequest

Request structure (C-style) The struct (includes the appended runtime_claims::RuntimeClaims) also serves as the attestation report in vTPM guest attestation.

IgvmAttestRequestData

Unmeasured user data, used for host attestation requests (C-style struct)

IgvmAttestRequestHeader

Unmeasured data used to provide transport sanity and versioning (C-style struct)

IgvmAttestRequestType

Request type (C-style enum)

IgvmAttestWrappedKeyResponseHeader

The response header for WRAPPED_KEY_REQUEST (C-style struct) Currently the definition is the same as IgvmAttestKeyReleaseResponseHeader.

Constants

AK_CERT_RESPONSE_BUFFER_SIZE

Number of pages required by the response buffer of AK_CERT request Currently the AK cert request only requires 1 page.

AK_CERT_RESPONSE_HEADER_VERSION

Current AK cert response header version

KEY_RELEASE_RESPONSE_BUFFER_SIZE

Number of pages required by the response buffer of KEY_RELEASE request Currently the number matches the maximum value defined by get_protocol

SNP_VM_REPORT_SIZE

TDX_VM_REPORT_SIZE

TVM_REPORT_SIZE

No TEE attestation report for TVM

VBS_VM_REPORT_SIZE

WRAPPED_KEY_RESPONSE_BUFFER_SIZE

Number of pages required by the response buffer of WRAPPED_KEY request Currently the number matches the maximum value defined by get_protocol