Skip to content

Commit

Permalink
aa/attester: Update virtee/sev dep to 1.2
Browse files Browse the repository at this point in the history 
virtee/sev 1.2 broke the API from 1.1, but we ended up using it in
az-snp-vtpm. Now we see issue building kbs when multiple conflicting
versions of virtee/sev are required. Bump the dependency here and adapt
the code to the new API.

Signed-off-by: Jeremi Piotrowski <[email protected]>
  • Loading branch information
@jepio @jiangliu
jepio authored and jiangliu committed Jul 4, 2023
1 parent ba1f62e commit af35c06
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 5 deletions.
2 changes: 1 addition & 1 deletion attestation-agent/attester/Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ log.workspace = true
occlum_dcap = { git = "https://github.com/occlum/occlum", rev = "dbe404f", optional = true }
serde.workspace = true
serde_json.workspace = true
sev = { git = "https://github.com/virtee/sev", rev = "3dca05d2c93388cb00534ad18f5928fd812e99cc", optional = true }
sev = { git = "https://github.com/virtee/sev", version = "1.2", default-features = false, features = ["snp"], optional = true }
strum.workspace = true
tdx-attest-rs = { git = "https://github.com/intel/SGXDataCenterAttestationPrimitives", tag = "DCAP_1.16", optional = true }

Expand Down
8 changes: 4 additions & 4 deletions attestation-agent/attester/src/snp/mod.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,9 @@
use super::Attester;
use anyhow::*;
use serde::{Deserialize, Serialize};
use sev::firmware::guest::types::{AttestationReport, SnpReportReq};
use sev::firmware::guest::AttestationReport;
use sev::firmware::guest::Firmware;
use sev::firmware::host::types::CertTableEntry;
use sev::firmware::host::CertTableEntry;
use std::path::Path;

pub fn detect_platform() -> bool {
Expand All @@ -35,10 +35,10 @@ impl Attester for SnpAttester {
report_data_bin.extend([0; 16]);

let mut firmware = Firmware::open()?;
let report_request = SnpReportReq::new(Some(report_data_bin.as_slice().try_into()?), 0);
let data = report_data_bin.as_slice().try_into()?;

let (report, certs) = firmware
.snp_get_ext_report(None, report_request)
.get_ext_report(None, Some(data), Some(0))
.context("Failed to get attestation report")?;

let evidence = SnpEvidence {
Expand Down

0 comments on commit af35c06

Please sign in to comment.