|
|
◆ oe_verify_attestation_certificate_with_evidence_v2()
| oe_result_t oe_verify_attestation_certificate_with_evidence_v2 |
( |
uint8_t * |
certificate_in_der, |
|
|
size_t |
certificate_in_der_size, |
|
|
uint8_t * |
endorsements_buffer, |
|
|
size_t |
endorsements_buffer_size, |
|
|
oe_policy_t * |
policies, |
|
|
size_t |
policies_size, |
|
|
oe_claim_t ** |
claims, |
|
|
size_t * |
claims_length |
|
) |
| |
oe_verify_attestation_certificate_with_evidence_v2
This function performs a custom validation on the input certificate. This validation includes extracting an attestation evidence extension from the certificate before validating this evidence. An optional claim_verify_callback could be passed in for a calling client to further validate the claims of the enclave creating the certificate. OE_FAILURE is returned if the expected certificate extension OID is not found.
- This feature is marked as experimental:
- Parameters
-
| [in] | certificate_in_der | A pointer to buffer holding certificate contents in DER format. |
| [in] | certificate_in_der_size | Size of certificate buffer above. |
| [in] | endorsements_buffer | A pointer to buffer holding endorsements. |
| [in] | endorsements_buffer_size | Size of the endorsements buffer. |
| [in] | policies | A pointer to buffer holding policies. |
| [in] | policies_size | Size of the policies buffer. |
| [out] | claims | A double-pointer to buffer holding claims. |
| [out] | claims_length | Size of the claims buffer if not NULL. |
- Return values
-
| OE_OK | Successful validation. |
| OE_VERIFY_FAILED | Quote failure. |
| OE_INVALID_PARAMETER | One or more invalid parameters. |
| OE_FAILURE | General failure. |
| Other | appropriate error code. |
|
