mirror of
https://github.com/ultravioletrs/cocos.git
synced 2026-06-23 04:10:25 +00:00
Danko Miladinovic
67f939fc66
* manager, cli and agent vtpm support * rebase and changed atls for vtpm * deleted unused code * changed chekproto.yaml script so it find the manager proto file correctly * fixe manager proto version * fix agent tests * fix server agent test * fix attestation test * fix attestation test gofumpt * created dummy RWC for TPM * fix comment * add default PCR values * rebase main * fix rust ci and missing header * changed embedded attestation to VMPL 2 * fix unused impot * fix pkg test * address attestation type * fix agent attestation test * add prc15 check * fix comments * fix cli tests * add doc * add mock for LeveledQuoteProvider when SEV-SNP device is not found Signed-off-by: Sammy Oina <sammyoina@gmail.com> * fix manager reading attestation policy * refactor PCR value checks and update attestation policy values Signed-off-by: Sammy Oina <sammyoina@gmail.com> * fix tests for sev and grpc --------- Signed-off-by: Sammy Oina <sammyoina@gmail.com> Co-authored-by: Sammy Oina <sammyoina@gmail.com>
Rust project for fetching Attestation Policy
This rust project fetches information from the host system needed for validation of the attestation report. It outputs a JSON file that contains the said information. The JSON file is in a format that can be used with the go-sev-guest library.
Usage
Clone cocos repository:
git clone git@github.com:ultravioletrs/cocos.git
cd ./cocos/scripts/attestation_policy
make
Then run the binary. Keep in mind that you have to specify the policy of the Guest VM:
cd ./target/release
# Run with option --policy (policy is 64 bit number)
./attestation_policy --policy 196608