Implementation of EnclaveAssertionGenerator that generates assertions using the Intel ECDSA quoting enclave.
More...
#include <sgx_intel_ecdsa_qe_remote_assertion_generator.h>
Public Member Functions | |
| SgxIntelEcdsaQeRemoteAssertionGenerator () | |
| SgxIntelEcdsaQeRemoteAssertionGenerator (std::unique_ptr< AdditionalAuthenticatedDataGenerator > aad_generator, std::unique_ptr< asylo::sgx::IntelArchitecturalEnclaveInterface > intel_enclaves, std::unique_ptr< sgx::HardwareInterface > hardware_interface) | |
| ~SgxIntelEcdsaQeRemoteAssertionGenerator () override=default | |
| Status | Initialize (const std::string &config) override |
Initializes this assertion authority using the provided config. More... | |
| bool | IsInitialized () const override |
| Indicates whether this assertion authority has been initialized successfully via a call to Initialize(). More... | |
| EnclaveIdentityType | IdentityType () const override |
| Gets the enclave identity type handled by this assertion authority. More... | |
| std::string | AuthorityType () const override |
| Gets the type of this assertion authority. More... | |
| Status | CreateAssertionOffer (AssertionOffer *offer) const override |
Creates an assertion offer compatible with this generator's identity type and authority type and places the result in offer. More... | |
| StatusOr< bool > | CanGenerate (const AssertionRequest &request) const override |
Indicates whether the assertion requested in request can be generated by this generator. More... | |
| Status | Generate (const std::string &user_data, const AssertionRequest &request, Assertion *assertion) const override |
Generates an assertion that satisfies the given request, if request is compatible with this generator's identity type and authority type. More... | |
 Public Member Functions inherited from asylo::EnclaveAssertionAuthority | |
| virtual | ~EnclaveAssertionAuthority ()=default |
Additional Inherited Members | |
| Static Public Member Functions inherited from asylo::EnclaveAssertionAuthority | |
| static StatusOr< std::string > | GenerateAuthorityId (const EnclaveIdentityType &identity_type, const std::string &authority_type) |
Gets a unique identifier for an EnclaveAssertionAuthority with the given identity_type and authority_type. More... | |
| Protected Member Functions inherited from asylo::EnclaveAssertionAuthority | |
| bool | IsCompatibleAssertionDescription (const AssertionDescription &description) const |
Indicates whether description describes an assertion that is compatible with this authority. More... | |
Detailed Description
Implementation of EnclaveAssertionGenerator that generates assertions using the Intel ECDSA quoting enclave.
These assertions attest, to a remote party, properties about both an enclave's code as well as the Intel platform properties.
Constructor & Destructor Documentation
◆ SgxIntelEcdsaQeRemoteAssertionGenerator() [1/2]
| asylo::SgxIntelEcdsaQeRemoteAssertionGenerator::SgxIntelEcdsaQeRemoteAssertionGenerator | ( | ) |
◆ SgxIntelEcdsaQeRemoteAssertionGenerator() [2/2]
| asylo::SgxIntelEcdsaQeRemoteAssertionGenerator::SgxIntelEcdsaQeRemoteAssertionGenerator | ( | std::unique_ptr< AdditionalAuthenticatedDataGenerator > | aad_generator, |
| std::unique_ptr< asylo::sgx::IntelArchitecturalEnclaveInterface > | intel_enclaves, | ||
| std::unique_ptr< sgx::HardwareInterface > | hardware_interface | ||
| ) |
◆ ~SgxIntelEcdsaQeRemoteAssertionGenerator()
|
overridedefault |
Member Function Documentation
◆ AuthorityType()
|
overridevirtual |
Gets the type of this assertion authority.
- Returns
- The type of this authority.
Implements asylo::EnclaveAssertionAuthority.
◆ CanGenerate()
|
overridevirtual |
Indicates whether the assertion requested in request can be generated by this generator.
- Parameters
-
request A request to be fulfilled.
- Returns
- True if the assertion specified in
requestcan be generated, and false if no errors occur during the operation butrequestcannot be fulfilled. Returns a non-OK Status if this generator is not yet initialized or if an internal error occurs while attempting the operation.
Implements asylo::EnclaveAssertionGenerator.
◆ CreateAssertionOffer()
|
overridevirtual |
Creates an assertion offer compatible with this generator's identity type and authority type and places the result in offer.
- Parameters
-
[out] offer The generated offer.
- Returns
- A Status indicating whether the offer was created. Returns a non-OK Status if this generator is not initialized or if an internal error occurs while attempting the operation.
Implements asylo::EnclaveAssertionGenerator.
◆ Generate()
|
overridevirtual |
Generates an assertion that satisfies the given request, if request is compatible with this generator's identity type and authority type.
The caller cannot make any assumptions about the contents of assertion if generation fails.
- Parameters
-
user_data User-provided binding data. request A request to fulfill. [out] assertion The generated assertion.
- Returns
- A Status indicating whether an assertion was generated successfully. Returns a non-OK Status if the generator is not initialized or if an internal error occurs while attempting the operation.
Implements asylo::EnclaveAssertionGenerator.
◆ IdentityType()
|
overridevirtual |
Gets the enclave identity type handled by this assertion authority.
- Returns
- The identity type handled by this authority.
Implements asylo::EnclaveAssertionAuthority.
◆ Initialize()
|
overridevirtual |
Initializes this assertion authority using the provided config.
- Parameters
-
config A config with which to initialize this authority.
- Returns
- A Status indicating whether initialization succeeded.
Implements asylo::EnclaveAssertionAuthority.
◆ IsInitialized()
|
overridevirtual |
Indicates whether this assertion authority has been initialized successfully via a call to Initialize().
- Returns
- True if this authority is initialized.
Implements asylo::EnclaveAssertionAuthority.
The documentation for this class was generated from the following file:
- asylo/identity/attestation/sgx/sgx_intel_ecdsa_qe_remote_assertion_generator.h