Open Enclave  0.17.0

◆ oe_verify_attestation_certificate_with_evidence_v2()

oe_result_t oe_verify_attestation_certificate_with_evidence_v2 ( uint8_t *  certificate_in_der,
size_t  certificate_in_der_size,
uint8_t *  endorsements_buffer,
size_t  endorsements_buffer_size,
oe_policy_t policies,
size_t  policies_size,
oe_claim_t **  claims,
size_t *  claims_length 
)

oe_verify_attestation_certificate_with_evidence_v2

This function performs a custom validation on the input certificate. This validation includes extracting an attestation evidence extension from the certificate before validating this evidence. An optional claim_verify_callback could be passed in for a calling client to further validate the claims of the enclave creating the certificate. OE_FAILURE is returned if the expected certificate extension OID is not found.

This feature is marked as experimental:
Parameters
[in]certificate_in_derA pointer to buffer holding certificate contents in DER format.
[in]certificate_in_der_sizeSize of certificate buffer above.
[in]endorsements_bufferA pointer to buffer holding endorsements.
[in]endorsements_buffer_sizeSize of the endorsements buffer.
[in]policiesA pointer to buffer holding policies.
[in]policies_sizeSize of the policies buffer.
[out]claimsA double-pointer to buffer holding claims.
[out]claims_lengthSize of the claims buffer if not NULL.
Return values
OE_OKSuccessful validation.
OE_VERIFY_FAILEDQuote failure.
OE_INVALID_PARAMETEROne or more invalid parameters.
OE_FAILUREGeneral failure.
Otherappropriate error code.