Measure GPU attestation evidence into RTMR with a new CEL event#659
Open
Sibcgh wants to merge 2 commits intogoogle:mainfrom
Open
Measure GPU attestation evidence into RTMR with a new CEL event#659Sibcgh wants to merge 2 commits intogoogle:mainfrom
Sibcgh wants to merge 2 commits intogoogle:mainfrom
Conversation
Sibcgh
force-pushed
the
gpu_rtmr_cel_event
branch
5 times, most recently
from
6ada49a to
ce039d9
Compare
Sibcgh
force-pushed
the
gpu_rtmr_cel_event
branch
from
9790cba to
3b011bd
Compare
Sibcgh
force-pushed
the
gpu_rtmr_cel_event
branch
3 times, most recently
from
b152413 to
d4fd8b4
Compare
Collaborator
Author
|
/gcbrun |
1 similar comment
Collaborator
Author
|
/gcbrun |
yawangwang
reviewed
Feb 14, 2026
launcher/container_runner.go
Outdated
| // measureGPUAttestationEvidence will measure GPU attestation claims into the COS | ||
| // eventlog in the AttestationAgent. | ||
| func (r *ContainerRunner) measureGPUAttestationEvidence() error { | ||
| if err := r.attestAgent.MeasureEvent(cel.CosTlv{EventType: cel.GPUDeviceAttestationBindingType, EventContent: []byte{}}); err != nil { |
Collaborator
There was a problem hiding this comment.
Let's define the GPU evidence data structure first because this PR seems to depend on it.
The GPU evidence will be collected first, translated into the known data structure in launcher/teeserver/models/attestation.go, and then serialized as JSON bytes.
Sibcgh
force-pushed
the
gpu_rtmr_cel_event
branch
from
d4fd8b4 to
ac3710b
Compare
Collaborator
Author
|
/gcbrun |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Binding GPU measurements into RTMR. Measurements need to completed before GPU is in ready state to avoid malicious GPU workload from potentially tampering with GPU measurements before CPU can adds measurements into RTMR.