Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security Policy
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

verify

package

Go to main page

Versions in this module

v0

v0.7.2

Aug 7, 2024

v0.7.1

Jul 25, 2024

v0.7.0

Jun 24, 2024

Changes in this version

+ const CACHE_DIR

+ const CA_PLATFORM

+ const CA_PROCESSOR

+ const ConfigurationNeeded

+ const ECDSA_P_256

+ const NotSupported

+ const OutOfDate

+ const OutOfDateConfigurationNeeded

+ const PCK_CERT_CRL_NAME

+ const PCS_PCK_CERT_CRL_URI

+ const PCS_ROOT_CA_CRL_URI

+ const QE

+ const QUOTE_HEADER_SIZE

+ const QVE

+ const ROOT_CA_CRL_NAME

+ const Revoked

+ const SGX_EXTENSION_INDEX

+ const SGX_QUOTE_BODY_SIZE

+ const SGX_QUOTE_MIN_SIZE

+ const SGX_QUOTE_SIGNATURE_OFFSET

+ const SGX_QUOTE_TYPE

+ const TDX_QUOTE_BODY_SIZE

+ const TDX_QUOTE_SIGNATURE_OFFSET

+ const TDX_QUOTE_TYPE

+ const TD_QE

+ const UpToDate

+ func CrlCheck(crl *x509.RevocationList, cert *x509.Certificate, parentCert *x509.Certificate) (bool, error)

+ func DecodeSnpReport(report []byte) (snpreport, error)

+ func Verify(arRaw, nonce, casPem []byte, policies []byte, polEng PolicyEngineSelect, ...) ar.VerificationResult

+ func VerifyIntelCertChainFull(quoteCerts SgxCertificates, ca string, intelCache string) ([][]*x509.Certificate, ar.ErrorCode)

+ func VerifyIntelQuoteSignature(reportRaw []byte, quoteSignature any, quoteSignatureSize uint32, ...) (ar.SignatureResult, bool)

+ func VerifyQEIdentity(qeReportBody *EnclaveReportBody, qeIdentity *QEIdentity, ...) (ar.TcbLevelResult, error)

+ func VerifySgxQuoteBody(body *EnclaveReportBody, tcbInfo *TcbInfo, sgxExtensions *SGXExtensionsValue, ...) error

+ func VerifyTCBSigningCertChain(quoteCerts SgxCertificates, intelCache string) ([][]*x509.Certificate, ar.ErrorCode)

+ type Configuration struct

+ Id asn1.ObjectIdentifier

+ Value []struct{ ... }

+ type DukTapePolicyEngine struct

+ func (p DukTapePolicyEngine) Validate(policies []byte, result ar.VerificationResult) bool

+ type ECDSA256QuoteSignatureDataStructure struct

+ ECDSAAttestationKey [64]byte

+ ISVEnclaveReportSignature [64]byte

+ QEAuthData []byte

+ QEAuthDataSize uint16

+ QECertData []byte

+ QECertDataSize uint32

+ QECertDataType uint16

+ QEReport EnclaveReportBody

+ QEReportSignature [64]byte

+ type ECDSA256QuoteSignatureDataStructureV4 struct

+ ECDSAAttestationKey [64]byte

+ QECertData QEReportCertDataV4

+ QECertDataSize uint32

+ QECertDataType uint16

+ QuoteSignature [64]byte

+ type EnclaveID string

+ type EnclaveReportBody struct

+ Attributes [16]byte

+ CPUSVN [16]byte

+ ISVProdID uint16

+ ISVSVN uint16

+ MISCSELECT uint32

+ MRENCLAVE [32]byte

+ MRSIGNER [32]byte

+ ReportData [64]byte

+ Reserved1 [28]byte

+ Reserved2 [32]byte

+ Reserved3 [96]byte

+ Reserved4 [60]byte

+ type FMSPC struct

+ Id asn1.ObjectIdentifier

+ Value []byte

+ type Iat struct

+ AuthChallenge []byte

+ BootSeed [32]byte

+ ClientId int

+ HwVersion string

+ ImplementationId [32]byte

+ InstanceId [33]byte

+ LifeCycle uint16

+ NoSwMeasurements int

+ ProfileDefinition string

+ SwComponents []SwComponent

+ Vsi string

+ type JsPolicyEngine struct

+ func (p JsPolicyEngine) Validate(policies []byte, result ar.VerificationResult) bool

+ type PCEID struct

+ Id asn1.ObjectIdentifier

+ Value []byte

+ type PPID struct

+ Id asn1.ObjectIdentifier

+ Value []byte

+ type PlatformInstanceId struct

+ Id asn1.ObjectIdentifier

+ Value []byte

+ type PolicyEngineSelect uint32

+ const PolicyEngineSelect_DukTape

+ const PolicyEngineSelect_JS

+ const PolicyEngineSelect_None

+ type PolicyValidator interface

+ Validate func(policies []byte, result ar.VerificationResult) bool

+ type QEIdentity struct

+ EnclaveIdentity QEIdentityBody

+ Signature ar.HexByte

+ type QEIdentityBody struct

+ Attributes ar.HexByte

+ AttributesMask ar.HexByte

+ Id EnclaveID

+ IssueDate time.Time

+ IsvProdId uint32

+ Miscselect ar.HexByte

+ MiscselectMask ar.HexByte

+ Mrsigner ar.HexByte

+ NextUpdate time.Time

+ TcbEvaluationDataNumber uint32

+ TcbLevels []TcbLevelEnclaveId

+ Version uint32

+ type QEReportCertDataV4 struct

+ QEAuthData []byte

+ QEAuthDataSize uint16

+ QECertData SgxCertificates

+ QECertDataSize uint32

+ QECertDataType uint16

+ QEReport EnclaveReportBody

+ QEReportSignature [64]byte

+ type QuoteHeader struct

+ AttestationKeyType uint16

+ PCESVN uint16

+ QESVN uint16

+ QEVendorID [16]byte

+ TeeType uint32

+ UserData [20]byte

+ Version uint16

+ type SGXExtensionsValue struct

+ Configuration Configuration

+ Fmspc FMSPC

+ PceId PCEID

+ PlatformInstanceId PlatformInstanceId

+ Ppid PPID

+ SgxType SGXTYPE

+ Tcb TCB

+ func ParseSGXExtensions(extensions []byte) (SGXExtensionsValue, error)

+ type SGXExtensionsWrapper struct

+ Value SGXExtensionsValue

+ type SGXTYPE struct

+ Id asn1.ObjectIdentifier

+ Value asn1.Enumerated

+ type SgxCertificates struct

+ IntermediateCert *x509.Certificate

+ PCKCert *x509.Certificate

+ RootCACert *x509.Certificate

+ TCBSigningCert *x509.Certificate

+ type SgxReport struct

+ ISVEnclaveReport EnclaveReportBody

+ QuoteHeader QuoteHeader

+ QuoteSignatureData ECDSA256QuoteSignatureDataStructure

+ QuoteSignatureDataLen uint32

+ func DecodeSgxReport(report []byte) (SgxReport, error)

+ type SwComponent struct

+ MeasurementDescription string

+ MeasurementType string

+ MeasurementValue []byte

+ SignerId []byte

+ Version string

+ type TCB struct

+ Id asn1.ObjectIdentifier

+ Value struct{ ... }

+ type TCBComp struct

+ Svn asn1.ObjectIdentifier

+ Value int

+ type TcbComponent struct

+ Category string

+ Svn byte

+ Type string

+ type TcbInfo struct

+ Signature ar.HexByte

+ TcbInfo TcbInfoBody

+ type TcbInfoBody struct

+ Fmspc ar.HexByte

+ Id string

+ IssueDate time.Time

+ NextUpdate time.Time

+ PceId ar.HexByte

+ TcbEvaluationDataNumber uint32

+ TcbLevels []TcbLevel

+ TcbType uint32

+ TdxModule TdxModule

+ Version uint32

+ type TcbLevel struct

+ AdvisoryIDs []string

+ Tcb struct{ ... }

+ TcbDate time.Time

+ TcbStatus string

+ type TcbLevelEnclaveId struct

+ AdvisoryIDs []string

+ Tcb struct{ ... }

+ TcbDate time.Time

+ TcbStatus TcbStatus

+ type TcbStatus string

+ type TdxModule struct

+ Attributes ar.HexByte

+ AttributesMask ar.HexByte

+ Mrsigner ar.HexByte

+ type TdxReportBody struct

+ MrConfigId [48]byte

+ MrOwner [48]byte

+ MrOwnerConfig [48]byte

+ MrSeam [48]byte

+ MrSignerSeam [48]byte

+ MrTd [48]byte

+ ReportData [64]byte

+ RtMr0 [48]byte

+ RtMr1 [48]byte

+ RtMr2 [48]byte

+ RtMr3 [48]byte

+ SeamAttributes [8]byte

+ TdAttributes [8]byte

+ TeeTcbSvn [16]byte

+ XFAM [8]byte

+ type TdxReportV4 struct

+ QuoteBody TdxReportBody

+ QuoteHeader QuoteHeader

+ QuoteSignatureData ECDSA256QuoteSignatureDataStructureV4

+ QuoteSignatureDataLen uint32