apidocs/v0.17/attestation_2sgx_2evidence_8h_source.html

 // Copyright (c) Open Enclave SDK contributors.
 // Licensed under the MIT License.

 #ifndef _OE_ATTESTATION_SGX_EVIDENCE_H
 #define _OE_ATTESTATION_SGX_EVIDENCE_H

 #include <openenclave/bits/defs.h>

 OE_EXTERNC_BEGIN

 #define OE_FORMAT_UUID_SGX_ECDSA                                          \
     {                                                                     \
         0xa3, 0xa2, 0x1e, 0x87, 0x1b, 0x4d, 0x40, 0x14, 0xb7, 0x0a, 0xa1, \
             0x25, 0xd2, 0xfb, 0xcd, 0x8c                                  \
     }

 #define OE_FORMAT_UUID_LEGACY_REPORT_REMOTE                               \
     {                                                                     \
         0xc8, 0x30, 0x34, 0x54, 0xd9, 0x23, 0x4c, 0x2c, 0xa6, 0x91, 0xdf, \
             0x7d, 0xef, 0x46, 0x0a, 0x76                                  \
     }

 #define OE_FORMAT_UUID_RAW_SGX_QUOTE_ECDSA                                \
     {                                                                     \
         0x19, 0x23, 0xd9, 0x1e, 0x12, 0xd2, 0x4c, 0x72, 0xb2, 0x20, 0x25, \
             0xcd, 0x8d, 0xac, 0xe8, 0x71                                  \
     }

 #define OE_FORMAT_UUID_SGX_LOCAL_ATTESTATION                              \
     {                                                                     \
         0x09, 0x26, 0x8c, 0x33, 0x6e, 0x0b, 0x45, 0xe5, 0x8a, 0x27, 0x15, \
             0x64, 0x4d, 0x0e, 0xf8, 0x9a                                  \
     }

 #define OE_FORMAT_UUID_SGX_EPID_LINKABLE                                  \
     {                                                                     \
         0xf2, 0x28, 0xaa, 0x3f, 0xde, 0x4d, 0x49, 0xd3, 0x88, 0x4c, 0xb2, \
             0xaa, 0x87, 0xa5, 0x0d, 0xa6                                  \
     }

 #define OE_FORMAT_UUID_SGX_EPID_UNLINKABLE                                \
     {                                                                     \
         0x5c, 0x35, 0xd2, 0x90, 0xa2, 0xc2, 0x4c, 0x55, 0x9e, 0x13, 0x5a, \
             0xd7, 0x32, 0x74, 0x6c, 0x88                                  \
     }

 #define OE_FORMAT_UUID_SGX_UNKNOWN                                        \
     {                                                                     \
         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, \
             0x00, 0x00, 0x00, 0x00, 0x00                                  \
     }

 // SGX specific claims
 // Required: SGX report body fields that every SQX Quote verification should
 // output.
 // 1 boolean flag indicated by "sgx_misc_select_t"
 #define OE_CLAIM_SGX_PF_GP_EXINFO_ENABLED "sgx_pf_gp_exit_info_enabled"
 #define OE_CLAIM_SGX_ISV_EXTENDED_PRODUCT_ID "sgx_isv_extended_product_id"
 // 4 boolean flags indicated by "sgx_attributes_t"
 #define OE_CLAIM_SGX_IS_MODE64BIT "sgx_is_mode64bit"
 #define OE_CLAIM_SGX_HAS_PROVISION_KEY "sgx_has_provision_key"
 #define OE_CLAIM_SGX_HAS_EINITTOKEN_KEY "sgx_has_einittoken_key"
 #define OE_CLAIM_SGX_USES_KSS "sgx_uses_kss"
 #define OE_CLAIM_SGX_CONFIG_ID "sgx_config_id"
 #define OE_CLAIM_SGX_CONFIG_SVN "sgx_config_svn"
 #define OE_CLAIM_SGX_ISV_FAMILY_ID "sgx_isv_family_id"
 #define OE_SGX_REQUIRED_CLAIMS_COUNT 9

 // Optional: SQX Quote verification collaterals.
 #define OE_CLAIM_SGX_TCB_INFO "sgx_tcb_info"
 #define OE_CLAIM_SGX_TCB_ISSUER_CHAIN "sgx_tcb_issuer_chain"
 #define OE_CLAIM_SGX_PCK_CRL "sgx_pck_crl"
 #define OE_CLAIM_SGX_ROOT_CA_CRL "sgx_root_ca_crl"
 #define OE_CLAIM_SGX_CRL_ISSUER_CHAIN "sgx_crl_issuer_chain"
 #define OE_CLAIM_SGX_QE_ID_INFO "sgx_qe_id_info"
 #define OE_CLAIM_SGX_QE_ID_ISSUER_CHAIN "sgx_qe_id_issuer_chain"
 #define OE_SGX_OPTIONAL_CLAIMS_COUNT 7

 // Additional SGX specific claim: for the report data embedded in the SGX quote.

 #define OE_CLAIM_SGX_REPORT_DATA "sgx_report_data"

 typedef enum _oe_sgx_tcb_status
 {
     OE_SGX_TCB_STATUS_UP_TO_DATE = 0,

     OE_SGX_TCB_STATUS_OUT_OF_DATE = 1,

     OE_SGX_TCB_STATUS_REVOKED = 2,

     OE_SGX_TCB_STATUS_CONFIGURATION_NEEDED = 3,

     OE_SGX_TCB_STATUS_OUT_OF_DATE_CONFIGURATION_NEEDED = 4,

     OE_SGX_TCB_STATUS_SW_HARDENING_NEEDED = 5,

     OE_SGX_TCB_STATUS_CONFIGURATION_AND_SW_HARDENING_NEEDED = 6,

     OE_SGX_TCB_STATUS_INVALID = OE_ENUM_MAX,

 } oe_sgx_tcb_status_t;

 OE_EXTERNC_END

 #endif /* _OE_ATTESTATION_SGX_EVIDENCE_H */
OE_SGX_TCB_STATUS_OUT_OF_DATE_CONFIGURATION_NEEDED
TCB level of SGX platform is outdated and additional configuration of SGX platform may be needed...
Definition: evidence.h:187

OE_SGX_TCB_STATUS_INVALID
TCB level is not valid.
Definition: evidence.h:206

OE_SGX_TCB_STATUS_CONFIGURATION_NEEDED
TCB level of the SGX platform is up-to-date but additional configuration of SGX platform may be neede...
Definition: evidence.h:181

OE_SGX_TCB_STATUS_UP_TO_DATE
TCB level of SGX platform is up-to-date.
Definition: evidence.h:165

OE_SGX_TCB_STATUS_CONFIGURATION_AND_SW_HARDENING_NEEDED
TCB level of the SGX platform is up-to-date but additional configuration for the platform and Softwar...
Definition: evidence.h:201

_oe_sgx_tcb_status
_oe_sgx_tcb_status
TCB level status of SGX platform.
Definition: evidence.h:160

oe_sgx_tcb_status_t
enum _oe_sgx_tcb_status oe_sgx_tcb_status_t
TCB level status of SGX platform.

OE_SGX_TCB_STATUS_OUT_OF_DATE
TCB level of SGX platform is outdated.
Definition: evidence.h:170

OE_SGX_TCB_STATUS_REVOKED
TCB level of SGX platform is revoked.
Definition: evidence.h:175

OE_SGX_TCB_STATUS_SW_HARDENING_NEEDED
TCB level of the SGX platform is up-to-date but due to certain issues affecting the platform...
Definition: evidence.h:194