Documentation ¶
Overview ¶
Trusted Launch ¶
Use Azure's trusted launch vTPM to enable a TPM based measure boot Constellation.
Issuer ¶
Generates a TPM attestation using an attestation key saved in the TPM. Additionally an endorsement certificate of the key, and corresponding CA certificate chain are added to the attestation document.
Validator ¶
Verifies the TPM attestation statement using the public key of the endorsement certificate. The certificate is verified by first verifying its CA certificate chain.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Issuer ¶
type Issuer struct { oid.AzureTrustedLaunch *vtpm.Issuer // contains filtered or unexported fields }
Issuer for Azure trusted launch TPM attestation.
type Validator ¶
type Validator struct { oid.AzureTrustedLaunch *vtpm.Validator // contains filtered or unexported fields }
Validator for Azure trusted launch VM attestation.
func NewValidator ¶
func NewValidator(pcrs measurements.M, log vtpm.AttestationLogger) *Validator
NewValidator initializes a new Azure validator with the provided PCR values.
Click to show internal directories.
Click to hide internal directories.