Documentation ¶
Overview ¶
Copyright 2024 Contributors to the Veraison project. SPDX-License-Identifier: Apache-2.0
Copyright 2022-2024 Contributors to the Veraison project. SPDX-License-Identifier: Apache-2.0
Copyright 2024 Contributors to the Veraison project. SPDX-License-Identifier: Apache-2.0
Index ¶
- Constants
- Variables
- type CorimExtractor
- type EndorsementHandler
- func (o EndorsementHandler) Close() error
- func (o EndorsementHandler) Decode(data []byte) (*handler.EndorsementHandlerResponse, error)
- func (o EndorsementHandler) GetAttestationScheme() string
- func (o EndorsementHandler) GetName() string
- func (o EndorsementHandler) GetSupportedMediaTypes() []string
- func (o EndorsementHandler) Init(params handler.EndorsementHandlerParams) error
- type EvidenceHandler
- func (s EvidenceHandler) AppraiseEvidence(ec *proto.EvidenceContext, endorsementsStrings []string) (*ear.AttestationResult, error)
- func (s EvidenceHandler) ExtractClaims(token *proto.AttestationToken, trustAnchors []string) (map[string]interface{}, error)
- func (s EvidenceHandler) GetAttestationScheme() string
- func (s EvidenceHandler) GetName() string
- func (s EvidenceHandler) GetSupportedMediaTypes() []string
- func (s EvidenceHandler) ValidateEvidenceIntegrity(token *proto.AttestationToken, trustAnchors []string, ...) error
- type StoreHandler
- func (s StoreHandler) GetAttestationScheme() string
- func (s StoreHandler) GetName() string
- func (s StoreHandler) GetRefValueIDs(tenantID string, trustAnchors []string, claims map[string]interface{}) ([]string, error)
- func (s StoreHandler) GetSupportedMediaTypes() []string
- func (s StoreHandler) GetTrustAnchorIDs(token *proto.AttestationToken) ([]string, error)
- func (s StoreHandler) SynthKeysFromRefValue(tenantID string, refVal *handler.Endorsement) ([]string, error)
- func (s StoreHandler) SynthKeysFromTrustAnchor(tenantID string, ta *handler.Endorsement) ([]string, error)
Constants ¶
View Source
const SchemeName = "ARM_CCA"
Variables ¶
View Source
var ( ErrKeyNotFound = errors.New("key not found") ErrValuesMismatch = errors.New("values mismatch") )
View Source
var ( EndorsementMediaTypes = []string{ `application/corim-unsigned+cbor; profile="http://arm.com/cca/ssd/1"`, `application/corim-unsigned+cbor; profile="http://arm.com/cca/realm/1"`, } EvidenceMediaTypes = []string{ `application/eat-collection; profile="http://arm.com/CCA-SSD/1.0.0"`, } )
Functions ¶
This section is empty.
Types ¶
type CorimExtractor ¶
type CorimExtractor struct {
Profile string
}
func (CorimExtractor) RefValExtractor ¶
func (o CorimExtractor) RefValExtractor(rvs comid.ValueTriples) ([]*handler.Endorsement, error)
func (*CorimExtractor) SetProfile ¶
func (o *CorimExtractor) SetProfile(profile string)
func (CorimExtractor) TaExtractor ¶
func (o CorimExtractor) TaExtractor(avk comid.KeyTriple) (*handler.Endorsement, error)
type EndorsementHandler ¶
type EndorsementHandler struct{}
func (EndorsementHandler) Close ¶
func (o EndorsementHandler) Close() error
func (EndorsementHandler) Decode ¶
func (o EndorsementHandler) Decode(data []byte) (*handler.EndorsementHandlerResponse, error)
func (EndorsementHandler) GetAttestationScheme ¶
func (o EndorsementHandler) GetAttestationScheme() string
func (EndorsementHandler) GetName ¶
func (o EndorsementHandler) GetName() string
func (EndorsementHandler) GetSupportedMediaTypes ¶
func (o EndorsementHandler) GetSupportedMediaTypes() []string
func (EndorsementHandler) Init ¶
func (o EndorsementHandler) Init(params handler.EndorsementHandlerParams) error
type EvidenceHandler ¶
type EvidenceHandler struct{}
func (EvidenceHandler) AppraiseEvidence ¶
func (s EvidenceHandler) AppraiseEvidence( ec *proto.EvidenceContext, endorsementsStrings []string, ) (*ear.AttestationResult, error)
func (EvidenceHandler) ExtractClaims ¶
func (s EvidenceHandler) ExtractClaims( token *proto.AttestationToken, trustAnchors []string, ) (map[string]interface{}, error)
func (EvidenceHandler) GetAttestationScheme ¶
func (s EvidenceHandler) GetAttestationScheme() string
func (EvidenceHandler) GetName ¶
func (s EvidenceHandler) GetName() string
func (EvidenceHandler) GetSupportedMediaTypes ¶
func (s EvidenceHandler) GetSupportedMediaTypes() []string
func (EvidenceHandler) ValidateEvidenceIntegrity ¶
func (s EvidenceHandler) ValidateEvidenceIntegrity( token *proto.AttestationToken, trustAnchors []string, endorsementsStrings []string, ) error
ValidateEvidenceIntegrity, decodes CCA collection and then invokes Verify API of ccatoken library which verifies the signature on the platform part of CCA collection, using supplied trust anchor and internally verifies the realm part of CCA token using realm public key extracted from realm token.
type StoreHandler ¶
type StoreHandler struct{}
func (StoreHandler) GetAttestationScheme ¶
func (s StoreHandler) GetAttestationScheme() string
func (StoreHandler) GetName ¶
func (s StoreHandler) GetName() string
func (StoreHandler) GetRefValueIDs ¶
func (StoreHandler) GetSupportedMediaTypes ¶
func (s StoreHandler) GetSupportedMediaTypes() []string
func (StoreHandler) GetTrustAnchorIDs ¶
func (s StoreHandler) GetTrustAnchorIDs(token *proto.AttestationToken) ([]string, error)
func (StoreHandler) SynthKeysFromRefValue ¶
func (s StoreHandler) SynthKeysFromRefValue( tenantID string, refVal *handler.Endorsement, ) ([]string, error)
func (StoreHandler) SynthKeysFromTrustAnchor ¶
func (s StoreHandler) SynthKeysFromTrustAnchor(tenantID string, ta *handler.Endorsement) ([]string, error)
Source Files ¶
Click to show internal directories.
Click to hide internal directories.