pcr

package

v0.0.0-...-6662a7b Latest Latest Go to latest Published: Apr 4, 2024 License: MPL-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package pcr contains code that handles PCR operations.

This section is empty.

This section is empty.

func CalculateBankData(pcrNumber int, alg tpm2.TPMAlgID, sectionData map[secureboot.Section]string, rsaKey RSAKey) ([]tpm2internal.BankData, error)

CalculateBankData calculates the PCR bank data for a given set of UKI file sections.

This mimics the process happening happening in the TPM when the UKI is being loaded.

type Digest struct {
	// contains filtered or unexported fields
}

Digest implements the PCR extension algorithm.

Each time `Extend` is called, the hash of the previous data is prepended to the hash of new data and hashed together.

The initial hash value is all zeroes.

func NewDigest(alg crypto.Hash) *Digest

NewDigest creates a new Digest with the speified hash algorithm.

func (d *Digest) Extend(data []byte)

Extend extends the current hash with the specified data.

func (d *Digest) Hash() []byte

Hash returns the current hash value.

type RSAKey interface {
	crypto.Signer
	PublicRSAKey() *rsa.PublicKey
}

RSAKey is the input for the CalculateBankData function.

type Signature struct {
	Digest          string
	SignatureBase64 string
}

Signature returns the hashed signature digest and base64 encoded signature.

func Sign(digest []byte, hash crypto.Hash, key crypto.Signer) (*Signature, error)

Sign the digest using specified hash and key.