oak
oak copied to clipboard
project-oak
Meaningful control of data in distributed systems.
https://github.com/project-oak/oak/blob/2980d121bc796dbab343966a27d1062bfae8d5df/oak_functions_enclave_service/tests/integration_test.rs#L108-L113 we should use a version of some OakClient library, also to make it easier for the tests to be maintained as we make changes to the protos and other...
We need to generate and verify [CBOR](https://www.rfc-editor.org/rfc/rfc7049)/[COSE](https://datatracker.ietf.org/doc/html/rfc8152)/[CWT](https://www.rfc-editor.org/rfc/rfc8392.html) certificates to support attestation verification (and integration testing) in C++.
At the moment we are reusing the AMD SEV-SNP attestation report struct and just leaving most fields empty to create a fake attestation report when running without AMD SEV-SNP. We...
- See #4783 I thought clippy should turn them into errors -- why did it stop doing that?
``` ❯ cargo check Checking oak_functions_service v0.1.0 (/home/tzn/src/oak/oak_functions_service) warning: unused import: `Stage0DiceData` --> oak_restricted_kernel/src/syscall/dice_data.rs:19:52 | 19 | use oak_dice::evidence::{RestrictedKernelDiceData, Stage0DiceData}; | ^^^^^^^^^^^^^^ | = note: `#[warn(unused_imports)]` on by default warning:...
e.g. https://github.com/project-oak/oak/blob/1bbcbc3438e6eb34c4c57a79df158a17ded6a7f1/java/src/main/java/com/google/oak/client/oak_functions_client/Main.java#L31
At the moment the `loak_client` crate only validates the integrity of the DICE chain. Using the full verification library will allow us to do more in-depth testing. To allow this...
We need more in-depth testing: - Test with all reference values explicitly provided - Test with valid endorsements - Failure tests - Example attestation evidence for an Oak Restricted Kernel...
Metadata
Owner
Metadata
Meaningful control of data in distributed systems.