Documentation
¶
Index ¶
- Variables
- type VMGoldenMeasurement
- func (*VMGoldenMeasurement) Descriptor() ([]byte, []int)deprecated
- func (x *VMGoldenMeasurement) GetCaBundle() []byte
- func (x *VMGoldenMeasurement) GetCert() []byte
- func (x *VMGoldenMeasurement) GetClSpec() uint64
- func (x *VMGoldenMeasurement) GetCommit() []byte
- func (x *VMGoldenMeasurement) GetDigest() []byte
- func (x *VMGoldenMeasurement) GetSevSnp() *VMSevSnp
- func (x *VMGoldenMeasurement) GetTdx() *VMTdx
- func (x *VMGoldenMeasurement) GetTimestamp() *timestamp.Timestamp
- func (*VMGoldenMeasurement) ProtoMessage()
- func (x *VMGoldenMeasurement) ProtoReflect() protoreflect.Message
- func (x *VMGoldenMeasurement) Reset()
- func (x *VMGoldenMeasurement) String() string
- type VMLaunchEndorsement
- func (*VMLaunchEndorsement) Descriptor() ([]byte, []int)deprecated
- func (x *VMLaunchEndorsement) GetSerializedUefiGolden() []byte
- func (x *VMLaunchEndorsement) GetSignature() []byte
- func (*VMLaunchEndorsement) ProtoMessage()
- func (x *VMLaunchEndorsement) ProtoReflect() protoreflect.Message
- func (x *VMLaunchEndorsement) Reset()
- func (x *VMLaunchEndorsement) String() string
- type VMSevSnp
- func (*VMSevSnp) Descriptor() ([]byte, []int)deprecated
- func (x *VMSevSnp) GetCaBundle() []byte
- func (x *VMSevSnp) GetFamilyId() []byte
- func (x *VMSevSnp) GetImageId() []byte
- func (x *VMSevSnp) GetMeasurements() map[uint32][]byte
- func (x *VMSevSnp) GetPolicy() uint64
- func (x *VMSevSnp) GetSvn() uint32
- func (*VMSevSnp) ProtoMessage()
- func (x *VMSevSnp) ProtoReflect() protoreflect.Message
- func (x *VMSevSnp) Reset()
- func (x *VMSevSnp) String() string
- type VMTdx
- type VMTdx_Measurement
- func (*VMTdx_Measurement) Descriptor() ([]byte, []int)deprecated
- func (x *VMTdx_Measurement) GetEarlyAccept() bool
- func (x *VMTdx_Measurement) GetMrtd() []byte
- func (x *VMTdx_Measurement) GetRamGib() uint32
- func (*VMTdx_Measurement) ProtoMessage()
- func (x *VMTdx_Measurement) ProtoReflect() protoreflect.Message
- func (x *VMTdx_Measurement) Reset()
- func (x *VMTdx_Measurement) String() string
Constants ¶
This section is empty.
Variables ¶
View Source
var File_endorsement_proto protoreflect.FileDescriptor
Functions ¶
This section is empty.
Types ¶
type VMGoldenMeasurement ¶
type VMGoldenMeasurement struct {
Timestamp *timestamp.Timestamp `protobuf:"bytes,1,opt,name=timestamp,proto3" json:"timestamp,omitempty"`
// The changelist number this UEFI was built from.
ClSpec uint64 `protobuf:"varint,2,opt,name=cl_spec,json=clSpec,proto3" json:"cl_spec,omitempty"`
// The commit hash this UEFI was built from.
Commit []byte `protobuf:"bytes,3,opt,name=commit,proto3" json:"commit,omitempty"`
// DER format certificate of the key that signed this document.
Cert []byte `protobuf:"bytes,4,opt,name=cert,proto3" json:"cert,omitempty"`
// SHA-384 digest of the UEFI binary without TEE-specifics about launch.
Digest []byte `protobuf:"bytes,5,opt,name=digest,proto3" json:"digest,omitempty"`
// A sequence of PEM-encoded certificates of keys used in cert in Root ...
// final intermediate order. The last certificate will have signed cert.
CaBundle []byte `protobuf:"bytes,6,opt,name=ca_bundle,json=caBundle,proto3" json:"ca_bundle,omitempty"`
SevSnp *VMSevSnp `protobuf:"bytes,7,opt,name=sev_snp,json=sevSnp,proto3" json:"sev_snp,omitempty"`
Tdx *VMTdx `protobuf:"bytes,8,opt,name=tdx,proto3" json:"tdx,omitempty"`
// contains filtered or unexported fields
}
func (*VMGoldenMeasurement) Descriptor
deprecated
func (*VMGoldenMeasurement) Descriptor() ([]byte, []int)
Deprecated: Use VMGoldenMeasurement.ProtoReflect.Descriptor instead.
func (*VMGoldenMeasurement) GetCaBundle ¶
func (x *VMGoldenMeasurement) GetCaBundle() []byte
func (*VMGoldenMeasurement) GetCert ¶
func (x *VMGoldenMeasurement) GetCert() []byte
func (*VMGoldenMeasurement) GetClSpec ¶
func (x *VMGoldenMeasurement) GetClSpec() uint64
func (*VMGoldenMeasurement) GetCommit ¶
func (x *VMGoldenMeasurement) GetCommit() []byte
func (*VMGoldenMeasurement) GetDigest ¶
func (x *VMGoldenMeasurement) GetDigest() []byte
func (*VMGoldenMeasurement) GetSevSnp ¶
func (x *VMGoldenMeasurement) GetSevSnp() *VMSevSnp
func (*VMGoldenMeasurement) GetTdx ¶
func (x *VMGoldenMeasurement) GetTdx() *VMTdx
func (*VMGoldenMeasurement) GetTimestamp ¶
func (x *VMGoldenMeasurement) GetTimestamp() *timestamp.Timestamp
func (*VMGoldenMeasurement) ProtoMessage ¶
func (*VMGoldenMeasurement) ProtoMessage()
func (*VMGoldenMeasurement) ProtoReflect ¶
func (x *VMGoldenMeasurement) ProtoReflect() protoreflect.Message
func (*VMGoldenMeasurement) Reset ¶
func (x *VMGoldenMeasurement) Reset()
func (*VMGoldenMeasurement) String ¶
func (x *VMGoldenMeasurement) String() string
type VMLaunchEndorsement ¶
type VMLaunchEndorsement struct {
SerializedUefiGolden []byte `protobuf:"bytes,1,opt,name=serialized_uefi_golden,json=serializedUefiGolden,proto3" json:"serialized_uefi_golden,omitempty"`
Signature []byte `protobuf:"bytes,2,opt,name=signature,proto3" json:"signature,omitempty"`
// contains filtered or unexported fields
}
func (*VMLaunchEndorsement) Descriptor
deprecated
func (*VMLaunchEndorsement) Descriptor() ([]byte, []int)
Deprecated: Use VMLaunchEndorsement.ProtoReflect.Descriptor instead.
func (*VMLaunchEndorsement) GetSerializedUefiGolden ¶
func (x *VMLaunchEndorsement) GetSerializedUefiGolden() []byte
func (*VMLaunchEndorsement) GetSignature ¶
func (x *VMLaunchEndorsement) GetSignature() []byte
func (*VMLaunchEndorsement) ProtoMessage ¶
func (*VMLaunchEndorsement) ProtoMessage()
func (*VMLaunchEndorsement) ProtoReflect ¶
func (x *VMLaunchEndorsement) ProtoReflect() protoreflect.Message
func (*VMLaunchEndorsement) Reset ¶
func (x *VMLaunchEndorsement) Reset()
func (*VMLaunchEndorsement) String ¶
func (x *VMLaunchEndorsement) String() string
type VMSevSnp ¶
type VMSevSnp struct {
// The Google-reported security version number of this UEFI on SEV-SNP.
Svn uint32 `protobuf:"varint,1,opt,name=svn,proto3" json:"svn,omitempty"`
// Expected MEASUREMENT report field values given [key]-many VMSAs at launch.
Measurements map[uint32][]byte `` // bytes size 48
/* 166-byte string literal not displayed */
// A UUID that Google uses for its CVM UEFIs
FamilyId []byte `protobuf:"bytes,3,opt,name=family_id,json=familyId,proto3" json:"family_id,omitempty"` // size 16
// A UUID to name this specific release of the UEFI image.
ImageId []byte `protobuf:"bytes,4,opt,name=image_id,json=imageId,proto3" json:"image_id,omitempty"` // size 16
// The launch policy that verifiers should expect with this UEFI.
Policy uint64 `protobuf:"varint,5,opt,name=policy,proto3" json:"policy,omitempty"`
// Optional. PEM-encoded certs for Identity..Author..Root. If a singleton,
// only an Id-key is used.
CaBundle []byte `protobuf:"bytes,6,opt,name=ca_bundle,json=caBundle,proto3" json:"ca_bundle,omitempty"`
// contains filtered or unexported fields
}
func (*VMSevSnp) Descriptor
deprecated
func (*VMSevSnp) GetCaBundle ¶
func (*VMSevSnp) GetFamilyId ¶
func (*VMSevSnp) GetImageId ¶
func (*VMSevSnp) GetMeasurements ¶
func (*VMSevSnp) ProtoMessage ¶
func (*VMSevSnp) ProtoMessage()
func (*VMSevSnp) ProtoReflect ¶
func (x *VMSevSnp) ProtoReflect() protoreflect.Message
type VMTdx ¶
type VMTdx struct {
// The Google-reported security version number of this UEFI on TDX.
Svn uint32 `protobuf:"varint,1,opt,name=svn,proto3" json:"svn,omitempty"`
// Expected MRTD report field values given legal configurations.
Measurements []*VMTdx_Measurement `protobuf:"bytes,2,rep,name=measurements,proto3" json:"measurements,omitempty"`
// contains filtered or unexported fields
}
func (*VMTdx) Descriptor
deprecated
func (*VMTdx) GetMeasurements ¶
func (x *VMTdx) GetMeasurements() []*VMTdx_Measurement
func (*VMTdx) ProtoMessage ¶
func (*VMTdx) ProtoMessage()
func (*VMTdx) ProtoReflect ¶
func (x *VMTdx) ProtoReflect() protoreflect.Message
type VMTdx_Measurement ¶
type VMTdx_Measurement struct {
// The amount of RAM in GiB provided to the VM. This is relevant to the
// construction of the measured TDHOB page that includes memory regions'
// resource attributes.
RamGib uint32 `protobuf:"varint,1,opt,name=ram_gib,json=ramGib,proto3" json:"ram_gib,omitempty"`
// If true, EFI_UNACCEPTED_MEMORY not presented to guest.
// All memory is accepted by the firmware. Relevant to the TDHOB page
// since the resource attribute will include
// EFI_RESOURCE_ATTRIBUTE_NEEDS_EARLY_ACCEPT.
EarlyAccept bool `protobuf:"varint,2,opt,name=early_accept,json=earlyAccept,proto3" json:"early_accept,omitempty"`
// The SHA-384 digest of the measurement operations for the VM at launch.
Mrtd []byte `protobuf:"bytes,3,opt,name=mrtd,proto3" json:"mrtd,omitempty"`
// contains filtered or unexported fields
}
func (*VMTdx_Measurement) Descriptor
deprecated
func (*VMTdx_Measurement) Descriptor() ([]byte, []int)
Deprecated: Use VMTdx_Measurement.ProtoReflect.Descriptor instead.
func (*VMTdx_Measurement) GetEarlyAccept ¶
func (x *VMTdx_Measurement) GetEarlyAccept() bool
func (*VMTdx_Measurement) GetMrtd ¶
func (x *VMTdx_Measurement) GetMrtd() []byte
func (*VMTdx_Measurement) GetRamGib ¶
func (x *VMTdx_Measurement) GetRamGib() uint32
func (*VMTdx_Measurement) ProtoMessage ¶
func (*VMTdx_Measurement) ProtoMessage()
func (*VMTdx_Measurement) ProtoReflect ¶
func (x *VMTdx_Measurement) ProtoReflect() protoreflect.Message
func (*VMTdx_Measurement) Reset ¶
func (x *VMTdx_Measurement) Reset()
func (*VMTdx_Measurement) String ¶
func (x *VMTdx_Measurement) String() string
Source Files
Click to show internal directories.
Click to hide internal directories.