| Lorenz Brun | 662182f | 2022-03-10 14:06:48 +0100 | [diff] [blame^] | 1 | syntax = "proto3"; |
| 2 | option go_package = "source.monogon.dev/metropolis/pkg/tpm/proto"; |
| 3 | package metropolis.pkg.tpm; |
| 4 | |
| 5 | import "proto/tpm.proto"; |
| 6 | |
| 7 | // ExtendedSealedBytes contains data sealed by a TPM2 via an indirection to |
| 8 | // allow for more than 128 bytes of payload. It seals an ephemeral key for |
| 9 | // a nacl secretbox in the TPM and stores the encrypted box next to the sealed |
| 10 | // key. |
| 11 | message ExtendedSealedBytes { |
| 12 | // The secretbox key, as sealed by the TPM. |
| 13 | .proto.SealedBytes sealed_key = 1; |
| 14 | // The encrypted box contents. |
| 15 | bytes encrypted_payload = 2; |
| 16 | } |