Open Enclave  0.13.0
evidence.h
Go to the documentation of this file.
1 // Copyright (c) Open Enclave SDK contributors.
2 // Licensed under the MIT License.
3 
76 #ifndef _OE_ATTESTATION_SGX_EVIDENCE_H
77 #define _OE_ATTESTATION_SGX_EVIDENCE_H
78 
79 #include <openenclave/bits/defs.h>
80 
81 OE_EXTERNC_BEGIN
82 
83 #define OE_FORMAT_UUID_SGX_ECDSA \
84  { \
85  0xa3, 0xa2, 0x1e, 0x87, 0x1b, 0x4d, 0x40, 0x14, 0xb7, 0x0a, 0xa1, \
86  0x25, 0xd2, 0xfb, 0xcd, 0x8c \
87  }
88 
89 #define OE_FORMAT_UUID_LEGACY_REPORT_REMOTE \
90  { \
91  0xc8, 0x30, 0x34, 0x54, 0xd9, 0x23, 0x4c, 0x2c, 0xa6, 0x91, 0xdf, \
92  0x7d, 0xef, 0x46, 0x0a, 0x76 \
93  }
94 
95 #define OE_FORMAT_UUID_RAW_SGX_QUOTE_ECDSA \
96  { \
97  0x19, 0x23, 0xd9, 0x1e, 0x12, 0xd2, 0x4c, 0x72, 0xb2, 0x20, 0x25, \
98  0xcd, 0x8d, 0xac, 0xe8, 0x71 \
99  }
100 
101 #define OE_FORMAT_UUID_SGX_LOCAL_ATTESTATION \
102  { \
103  0x09, 0x26, 0x8c, 0x33, 0x6e, 0x0b, 0x45, 0xe5, 0x8a, 0x27, 0x15, \
104  0x64, 0x4d, 0x0e, 0xf8, 0x9a \
105  }
106 
107 #define OE_FORMAT_UUID_SGX_EPID_LINKABLE \
108  { \
109  0xf2, 0x28, 0xaa, 0x3f, 0xde, 0x4d, 0x49, 0xd3, 0x88, 0x4c, 0xb2, \
110  0xaa, 0x87, 0xa5, 0x0d, 0xa6 \
111  }
112 
113 #define OE_FORMAT_UUID_SGX_EPID_UNLINKABLE \
114  { \
115  0x5c, 0x35, 0xd2, 0x90, 0xa2, 0xc2, 0x4c, 0x55, 0x9e, 0x13, 0x5a, \
116  0xd7, 0x32, 0x74, 0x6c, 0x88 \
117  }
118 
119 #define OE_FORMAT_UUID_SGX_UNKNOWN \
120  { \
121  0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, \
122  0x00, 0x00, 0x00, 0x00, 0x00 \
123  }
124 
125 // SGX specific claims
126 // Required: SGX report body fields that every SQX Quote verification should
127 // output.
128 // 1 boolean flag indicated by "sgx_misc_select_t"
129 #define OE_CLAIM_SGX_PF_GP_EXINFO_ENABLED "sgx_pf_gp_exit_info_enabled"
130 #define OE_CLAIM_SGX_ISV_EXTENDED_PRODUCT_ID "sgx_isv_extended_product_id"
131 // 4 boolean flags indicated by "sgx_attributes_t"
132 #define OE_CLAIM_SGX_IS_MODE64BIT "sgx_is_mode64bit"
133 #define OE_CLAIM_SGX_HAS_PROVISION_KEY "sgx_has_provision_key"
134 #define OE_CLAIM_SGX_HAS_EINITTOKEN_KEY "sgx_has_einittoken_key"
135 #define OE_CLAIM_SGX_USES_KSS "sgx_uses_kss"
136 #define OE_CLAIM_SGX_CONFIG_ID "sgx_config_id"
137 #define OE_CLAIM_SGX_CONFIG_SVN "sgx_config_svn"
138 #define OE_CLAIM_SGX_ISV_FAMILY_ID "sgx_isv_family_id"
139 #define OE_SGX_REQUIRED_CLAIMS_COUNT 9
140 
141 // Optional: SQX Quote verification collaterals.
142 #define OE_CLAIM_SGX_TCB_INFO "sgx_tcb_info"
143 #define OE_CLAIM_SGX_TCB_ISSUER_CHAIN "sgx_tcb_issuer_chain"
144 #define OE_CLAIM_SGX_PCK_CRL "sgx_pck_crl"
145 #define OE_CLAIM_SGX_ROOT_CA_CRL "sgx_root_ca_crl"
146 #define OE_CLAIM_SGX_CRL_ISSUER_CHAIN "sgx_crl_issuer_chain"
147 #define OE_CLAIM_SGX_QE_ID_INFO "sgx_qe_id_info"
148 #define OE_CLAIM_SGX_QE_ID_ISSUER_CHAIN "sgx_qe_id_issuer_chain"
149 #define OE_SGX_OPTIONAL_CLAIMS_COUNT 7
150 
151 // Additional SGX specific claim: for the report data embedded in the SGX quote.
152 
153 #define OE_CLAIM_SGX_REPORT_DATA "sgx_report_data"
154 
155 OE_EXTERNC_END
156 
157 #endif /* _OE_ATTESTATION_SGX_EVIDENCE_H */
Generated by   doxygen 1.8.13