Documentation
¶
Index ¶
- type Client
- func (c *Client) AddAgentToVerifier(ctx context.Context, ragent *registrar.Agent, vc verifier.Client, ...) (retErr error)
- func (c *Client) RandomVerifier() string
- func (c *Client) Registrar() registrar.Client
- func (c *Client) Verifier(name string) (verifier.Client, bool)
- func (c *Client) VerifierNames() []string
- func (c *Client) VerifyEK(ekCert *x509.Certificate, rootPool, intermediatePool *x509.CertPool) (*EKVerification, error)
- type EKVerification
- type Keylime
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Client ¶
type Client struct {
// contains filtered or unexported fields
}
func (*Client) AddAgentToVerifier ¶
func (*Client) RandomVerifier ¶
func (*Client) VerifierNames ¶
func (*Client) VerifyEK ¶
func (c *Client) VerifyEK(ekCert *x509.Certificate, rootPool, intermediatePool *x509.CertPool) (*EKVerification, error)
VerifyEK will verify if the `ekCert` verifies against the intermediate and root pools. It will return with an error if this fails. NOTE: This function will *always* return an EKVerification which could contain additional information that was extracted from the EK certificate regardless if verification passes or not.
type EKVerification ¶
type Keylime ¶
type Keylime interface {
Registrar() registrar.Client
Verifier(name string) (verifier.Client, bool)
VerifierNames() []string
RandomVerifier() string
AddAgentToVerifier(ctx context.Context, agent *registrar.Agent, vc verifier.Client, payload []byte, agentVerify bool) error
VerifyEK(ekCert *x509.Certificate, rootPool, intermediatePool *x509.CertPool) (*EKVerification, error)
}
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.