Use git version of dcap_qvl #62
Merged
+92
−48
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* main: (52 commits) Use helper fn for updating http headers Set x-forwarded-for header Set host only in the header - dont touch the URI Dont set host in header as well as URI Add additional logging to debug issue with URI setting Fix URI in request headers to match target service Azure attestation tdx-quote must be based on td_report with input data Accept hostnames as target server for proxy server Normalize non-PKCS8 private keys Rm unneeded configuration in Makefile build environment following review Run on a github runner rather than WarpBuild Rm unwraps Improve Cargo.toml Improve doccomments Update following merging main Tidy, allow config to be passed in Gate behind feature flag Error handling Simple attested websocket server/client Force single test thread in CI ...
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This bumps
dcap-qvlto 0.3.10 as the version we were using had a vulnerability. See https://github.com/flashbots/attested-tls-proxy/security/dependabot/2Worth noting, 0.3.5 introduced a feature which allows you to set a root of trust for PCK ceriticates, as well as trait implementations for encoding quotes. This means you can create mock quotes with (your own PCK root of trust), which is useful for testing verification logic and would help with #11