opensource/cocos
1
0
Fork 0
mirror of https://github.com/ultravioletrs/cocos.git synced 2026-06-23 04:10:25 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

add AllowEFIAppBeforeCallingEvent flag to vTPM verification (#542)

Browse Source
This commit is contained in:
Danko Miladinovic
2025-10-30 16:16:17 +01:00
committed by GitHub
parent 364724ff1b
commit 77a11c6535
3 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
pkg/attestation/vtpm/vtpm.go
+3 -1
View File
@@ -239,7 +239,9 @@ func VerifyQuote(quote []byte, vtpmNonce []byte, writer io.Writer, policy *attes
return err
}
ms, err := server.VerifyAttestation(attestation, server.VerifyOpts{Nonce: vtpmNonce, TrustedAKs: []crypto.PublicKey{cryptoPub}})
verifyOpts := server.VerifyOpts{Nonce: vtpmNonce, TrustedAKs: []crypto.PublicKey{cryptoPub}, AllowEFIAppBeforeCallingEvent: true}
ms, err := server.VerifyAttestation(attestation, verifyOpts)
if err != nil {
return errors.Wrap(fmt.Errorf("failed to verify attestation"), err)
}