Documentation ¶
Overview ¶
Package constants contains shared constants between the client and the server.
Index ¶
Constants ¶
const AttestationPrefix = "TLSAttestationV1"
AttestationPrefix is the protocol-defined prefix for finalizing attestations.
const EndSessionString = "TLS Tunneled EndSessionRequest V1"
EndSessionString gets session-encrypted and sent in an EndSession request.
const ExportLabel = "EXPERIMENTAL Google Confidential Computing Client Attestation 1.0"
ExportLabel is the unique label for exporting key material from the TLS session.
const GrpcPort = 9754
GrpcPort is the default gRPC server port.
const HTTPPort = 9755
HTTPPort is the default listening port for the HTTP to gRPC proxy.
const SrvTestCrt = `` /* 724-byte string literal not displayed */
SrvTestCrt is a self-signed test cert generated using SrvTestKey. $ openssl req -new -key ec_key.pem -x509 -nodes -days 365 -out cert.pem
const SrvTestKey = `` /* 301-byte string literal not displayed */
SrvTestKey is a test ECDSA key generated with the secp256r1 curve. $ openssl ecparam -out ec_key.pem -name secp256r1 -genkey
Variables ¶
var AllowableCipherSuites = []uint16{ tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, tls.TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, }
AllowableCipherSuites is a set of TLS cipher suites to allow for the inner session on both the client and server when using TLS 1.2 rather than 1.3+. These are ciphers that are considered secure in TLS 1.3 as of 2021-09-23. (see: https://en.wikipedia.org/wiki/Transport_Layer_Security#Cipher)
Functions ¶
This section is empty.
Types ¶
This section is empty.