Skip to content

Refactor attestation for multi-provider support #437

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
kvinwang wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Refactor attestation for multi-provider support #437

kvinwang wants to merge 5 commits into from

Conversation

@kvinwang
Copy link
Collaborator

@kvinwang kvinwang commented Jan 15, 2026

Why

Previously we only exposed raw TDX quotes, which effectively limited deployments to TDX bare metal. We need a multi-provider compatible attestation format and API so the stack can run on other platforms (GCP/Nitro) while keeping verification consistent and forward‑compatible.

Attestation Structure

  • Introduces versioned attestation envelopes via dstack-attest, with explicit version and mode (dstack/GCP/Nitro).
  • Attestation payload includes runtime events and platform‑specific evidence, enabling richer verification paths.
  • Supports legacy fallback to keep older clients/verifiers working.

RA‑TLS OID Changes

  • RA‑TLS certificates now embed the new attestation format under updated OIDs (instead of the prior quote-only payload).
  • This aligns cert‑based verification with the same attestation/eventlog pipeline used by RPC/SDK, and enables mode‑aware verification logic.

New Attest API

  • Adds an Attest RPC and SDK bindings so clients can request attestations directly, not only via TLS.
  • Gateway ACME/cert quoting updated to emit attestations through the new flow.

Summary of Changes

  • Added dstack-attest crate (versioned attestations, runtime events, platform-aware modes).
  • Migrated RA‑TLS, guest-agent, KMS, verifier, tdx‑attest to the new attestation/eventlog flow with compatibility fallback.
  • Added Attest RPC + SDK support; updated gateway cert/ACME quoting.
  • Extended types/configs for TPM key provider + host-share disk label; updated system setup and docker compose orphan cleanup.

@kvinwang
Add systemd drop-ins for dstack-prepare
d789e35
@kvinwang
refactor attestation for multi-provider support
63f30ce 
Add the dstack-attest crate with versioned attestations, runtime events, and platform-aware modes (dstack, GCP, Nitro).

Migrate RA-TLS, guest-agent, KMS, verifier, and tdx-attest wiring to the new attestation/eventlog flow with cert embedding and legacy fallback.

Introduce Attest RPC and SDK support; update gateway ACME and cert quoting to emit attestations.

Extend types/configs for TPM key provider and host-share disk label; update system setup and docker compose orphan cleanup.
@kvinwang
Merge remote-tracking branch 'ds/master' into refactor-for-cloud-prov…
73b05a5 
…iders
@kvinwang
Fix clippy
736abd8
@kvinwang kvinwang force-pushed the refactor-for-cloud-providers branch from be14542 to 736abd8 Compare January 15, 2026 06:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kvinwang