Expand description
This modules implements attestation protocols for Underhill to support TVM and CVM, including getting a tenant key via secure key release (SKR) for unlocking VMGS and requesting an attestation key (AK) certificate for TPM. The module also implements the VMGS unlocking process based on SKR.
Structs§
- Error
- An attestation error.
- Host
Attestation Settings - Host attestation settings obtained via the GET GSP call-out.
- Igvm
Attest Request Helper - Helper struct to create
IgvmAttestRequestin raw bytes. - Platform
Attestation Data - The return values of
initialize_platform_security.
Enums§
- Attestation
Type - The attestation type to use.
- Igvm
Attest Error
Functions§
- initialize_
platform_ security - If required, attest platform. Gets VMGS datastore key.
- parse_
ak_ cert_ response - Parse a
AK_CERT_REQUESTresponse and return the payload (i.e., the AK cert).