attest

package

v0.0.0-...-d7368f3 Latest Latest Go to latest Published: Mar 6, 2023 License: Apache-2.0 Imports: 18 Imported by: 6

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/capeprivacy/attest

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func GetAttestationDoc(publicKey []byte, nonce []byte, userData []byte) ([]byte, error)
func GetRootAWSCert() (*x509.Certificate, error)
type AttestationDoc
- func ParseAttestationDocument(attestation []byte) (*AttestationDoc, error)
type Manager
- func (m Manager) GetAttestationDocWithPublicKey(pk []byte, nonce []byte, userData []byte) ([]byte, error)
- func (m Manager) GetAttestationDocument(nonce []byte, userData []byte) ([]byte, error)
type NSM
type Verifier
- func NewVerifier(opts ...VerifierOpt) *Verifier
- func (v *Verifier) Verify(attestation []byte, nonce []byte) (*AttestationDoc, error)
type VerifierOpt
- func WithCurrentTime(time time.Time) VerifierOpt
- func WithRootCert(rootCert *x509.Certificate) VerifierOpt

Constants ¶

This section is empty.

Variables ¶

View Source

var ErrValidatingNonce = errors.New("error validating nonce")

Functions ¶

func GetAttestationDoc ¶

func GetAttestationDoc(publicKey []byte, nonce []byte, userData []byte) ([]byte, error)

func GetRootAWSCert ¶

func GetRootAWSCert() (*x509.Certificate, error)

Types ¶

type AttestationDoc ¶

type AttestationDoc struct {
	ModuleID    string `cbor:"module_id"`
	Timestamp   uint64
	Digest      string
	PCRs        map[int][]byte
	Certificate []byte
	Cabundle    [][]byte
	PublicKey   []byte `cbor:"public_key"`
	UserData    []byte `cbor:"user_data"`
	Nonce       []byte `cbor:"nonce"`
}

func ParseAttestationDocument ¶

func ParseAttestationDocument(attestation []byte) (*AttestationDoc, error)

ParseAttestationDocument is a utility method to return a Attestation Document without actually verifying it. Useful for if you need some info out of the document but you don't need to verify it.

type Manager ¶

type Manager struct {
	PublicKey []byte
}

func (Manager) GetAttestationDocWithPublicKey ¶

func (m Manager) GetAttestationDocWithPublicKey(pk []byte, nonce []byte, userData []byte) ([]byte, error)

func (Manager) GetAttestationDocument ¶

func (m Manager) GetAttestationDocument(nonce []byte, userData []byte) ([]byte, error)

type NSM ¶

type NSM interface {
	Send(req request.Request) (response.Response, error)
}

type Verifier ¶

type Verifier struct {
	// contains filtered or unexported fields
}

func NewVerifier ¶

func NewVerifier(opts ...VerifierOpt) *Verifier

func (*Verifier) Verify ¶

func (v *Verifier) Verify(attestation []byte, nonce []byte) (*AttestationDoc, error)

type VerifierOpt ¶

type VerifierOpt func(*Verifier)

func WithCurrentTime ¶

func WithCurrentTime(time time.Time) VerifierOpt

func WithRootCert ¶

func WithRootCert(rootCert *x509.Certificate) VerifierOpt

WithRootCert sets the root certificate to use. By default attestation uses the aws root certificate.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL