Upgrade confidentialcomputing client library to the latest version v1.6.0 with SEVSNP and TDX support.
Convert sevsnp proto from go-sev-guest repo to API protos such that new confidentialcomputing client library can understand.
Update some deprecated methods to the recommended version.
Manual e2e tests - ran gotpm binary from a SNP machine to fetch token from the staging endpoint. Token successfully returned with
{"aud":"https://sts.googleapis.com","exp":1722293238,"iat":1722289638,"iss":"https://staging-confidentialcomputing.sandbox.googleapis.com","nbf":1722289638,"sub":"https://www.googleapis.com/compute/v1/projects/yawangwang-test-project/zones/us-central1-a/instances/ubuntu2204-sevsnp-cvm2","eat_profile":"https://cloud.google.com/confidential-computing/confidential-vm/docs/token-claims","secboot":true,"oemid":11129,"hwmodel":"GCP_AMD_SEV_SNP","swname":"GCE","attester_tcb":["AMD","GOOGLE"],"dbgstat":"enabled","submods":{},"google_service_accounts":["1090918545711-compute@developer.gserviceaccount.com"]}
yawangwang
commented
1 month ago
This PR introduces the following changes:
confidentialcomputingclient library to the latest version v1.6.0 with SEVSNP and TDX support.go-sev-guestrepo to API protos such that new confidentialcomputing client library can understand.{"aud":"https://sts.googleapis.com","exp":1722293238,"iat":1722289638,"iss":"https://staging-confidentialcomputing.sandbox.googleapis.com","nbf":1722289638,"sub":"https://www.googleapis.com/compute/v1/projects/yawangwang-test-project/zones/us-central1-a/instances/ubuntu2204-sevsnp-cvm2","eat_profile":"https://cloud.google.com/confidential-computing/confidential-vm/docs/token-claims","secboot":true,"oemid":11129,"hwmodel":"GCP_AMD_SEV_SNP","swname":"GCE","attester_tcb":["AMD","GOOGLE"],"dbgstat":"enabled","submods":{},"google_service_accounts":["1090918545711-compute@developer.gserviceaccount.com"]}