feat: switch attestation tpm measurements

[narasimhan321]

What this PR does:

• proto changes to support tpm generation on per switch

Why this change is necessary:

• Security ask for attestation of the switch TPM measurements
• pre-requisite to schedule workload by csp.

What is the change:

• part of grpc api switch_security_handlers.rs

How to test this change:

• Unit tests
• Refer Attachment

Relevant issues:

• https://jirasw.nvidia.com/browse/RCKMANAGER-741

Reviewer Checklist:

• Code is well-documented
• Tests are adequate
• Follows coding standards
• Functionality works as expected

[vinodchitraliNVIDIA]

This means that RMS holds logic of placing the result to destination path. where the path is pointing to ?

[Matthias247]

I don't understand this either. It would mean we would need something like object storage that both services can access as prerequisite?

I think the results should just be made available via gRPC. Either directly in this API, or via separate APIs if we think the results are bigger.

[narasimhan321]

I should have discussed in the thread. switch has only self-signed certs currently and since TPM data is sensitive , is it okay to send over the wire ( in terms of payload they are much smaller 4K). So putting in the hostpath mount common between RMS and Carbide could be an option and artifact_path tries to achieve that but creates pod affinitiy dependecy on production sitecontroller (3 node k8s)

If sending over the wire is the right way then will change this.

[vinodchitraliNVIDIA]

hostpath is absolutely no. We should avoid this as much as possible.

gRPC max msg legth is 4MB. can you paste sample data?

[narasimhan321]

TPM is highly sensitive. shared over DM

[Matthias247]

the components have TLS and auth. RPC is fine. All the actual device credentials are also in the RPC Messages, and they are more critical

[Matthias247]

I don't understand this either. It would mean we would need something like object storage that both services can access as prerequisite?

I think the results should just be made available via gRPC. Either directly in this API, or via separate APIs if we think the results are bigger.

[Matthias247]

The name sounds a bit off. The operation we are doing is "Attestation". But what we fetch as part of this operation are "Measurements". So its's probably more like GetSwitchAttestationMeasurements or PerformSwitchAttestation - but I think the first is better since RMS doesn't seem to do any attestation work besides forwarding measurements.

[amitpabalkar]

+1 on GetSwitchAttestationMeasurements since its really not performing attestation or measurements - its simply retrieving the measurements from the switch

[narasimhan321]

I want to align it within CRUD naming but Perform is fine as well. will make the change.

[Matthias247]

Depending on the size of the measurements (I don't know how many bytes these are) we might or might not support the operation for multiple nodes.

[amitpabalkar]

I think the API should support multiple nodes. Let it be upto NICo to figure out if it wants to do single node or multiple nodes at a time.

[narasimhan321]

The api supports multiple nodes. IIRC dmitri mentioned they need TPM Attestation results per switch tray. we did generated tpm on a sample switch and its of 4K
4.0K /host/tpm/quotes.json

[Matthias247]

Ok. With 4k we should be fine getting measurements for a full rack in a single API call (9 switches x 4k = 36k).