Add .cddl and .diag files into the specs. (#54)

bluegate010 · web-flow · commit b95952535d62 · 2025-08-13T16:15:18.000-07:00
* Add .cddl and .diag files into the specs.

Signed-off-by: Jeff Andersen &lt;jeffandersen@google.com&gt;

* Use stable tag.

---------

Signed-off-by: Jeff Andersen &lt;jeffandersen@google.com&gt;
diff --git a/.github/workflows/deploy_pages.yml b/.github/workflows/deploy_pages.yml
@@ -18,10 +18,10 @@ defaults:
 jobs:
   # Render specs
   spec-render:
-    uses: opencomputeproject/ocp-spec-tools/.github/workflows/render.yml@main
+    uses: opencomputeproject/ocp-spec-tools/.github/workflows/render.yml@stable
     with:
       tcg-container-version: latest
-      ocp-template-ref: main
+      ocp-template-ref: stable
       inputs: >-
         [
           {
diff --git a/specifications/device-identity-provisioning/spec.ocp b/specifications/device-identity-provisioning/spec.ocp
@@ -353,3 +353,15 @@ In this specification, several example device identity key hierarchies use the t
 In TCG's DICE Hardware Requirements [@{tcg-dice-hardware-requirements}], FMC is defined as "First Measured Code", and is "the code and/or configuration information that is executed and/or takes effect immediately following the Device Identifier Composition Engine". First Measured Code is synonymous with Layer 0 in the DICE Layering Architecture [@{tcg-dice-layering-architecture}].
 
 The difference between First Measured Code and First Mutable Code is subtle but important. In Caliptra, the First Measured Code corresponds with the Caliptra ROM layer. As such, Caliptra's Device ID or IDevID keypair is wielded by ROM, rather than Caliptra's FMC.
+
+## Envelope-signed CSR EAT CDDL
+
+```include {.small}
+!include cddl/envelope-signed-csr-eat.cddl
+```
+
+## Envelope-signed CSR EAT example CDDL diag
+
+```include {.small}
+!include diag/envelope-signed-csr-eat-example.diag
+```
diff --git a/specifications/ietf-eat-profile/spec.ocp b/specifications/ietf-eat-profile/spec.ocp
@@ -288,7 +288,15 @@ The table below maps the above entries with the reference-triple dictionary stru
 | Value | measurement-map->mval->raw_value | Raw Value of the Security Setting |
 | ValueMask | measurement-map->mval->raw_value_mask | (Optional) Raw Value Mask |
 
-## Appendix
+# Appendix
+
+## Profile CDDL
+
+```include {.small}
+!include cddl/ietf_eat_ocp_profile.cddl
+```
+
+## CWT example
 
 The following example illustrates a CWT containing claims for three target environments:
 * **Firmware (FW) Component**: Digest and Security Version Number (SVN)

Original file line number	Diff line number	Diff line change
`@@ -18,10 +18,10 @@ defaults:`
`18`	`18`	`jobs:`
`19`	`19`	`# Render specs`
`20`	`20`	`spec-render:`
`21`		`- uses: opencomputeproject/ocp-spec-tools/.github/workflows/render.yml@main`
	`21`	`+ uses: opencomputeproject/ocp-spec-tools/.github/workflows/render.yml@stable`
`22`	`22`	`with:`
`23`	`23`	`tcg-container-version: latest`
`24`		`- ocp-template-ref: main`
	`24`	`+ ocp-template-ref: stable`
`25`	`25`	`inputs: >-`
`26`	`26`	`[`
`27`	`27`	`{`