BuildMrSignerBlacklist builds the MRSIGNER blacklist.

NewCachingQuoteService creates a new caching quote service.

NewHTTPClient returns a new PCS HTTP endpoint.

NewMockQuote generates a mock quote from the given report, after doing some light sanity checking on the report.

SetAllowDebugEnclaves will enable running and communicating with enclaves with debug flag enabled in report body for the remainder of the process' lifetime.

SetSkipVerify will disable quote signature verification for the remainder of the process' lifetime.

SetUnsafeLaxVerify enables the unsafe, more lax TCB status verification.

UnsetAllowDebugEnclaves will disable running and communicating with enclaves with debug flag enabled in report body for the remainder of the process' lifetime.

nolint: revive.

As of 2022-08-01.

TCBKindEnclave is the enclave TCB kind (e.g.

TCBKindPlatform is the platform TCB kind (e.g.

TdEnclaveIdentityContext is the TD enclave identity conversion context.

TimestampFormat is the format of the TCB timestamp, suitable for use with time.Parse.

UpdateEarly indicates an early access to updated TCB Info provided as part of a TCB recovery event.

UpdateStandard indicates standard access to updated TCB Info provided as part of a TCB recovery event.

IntelTrustRoots are Intel's PCS signing root certificates.

nolint: revive.

nolint: revive.

nolint: revive.

nolint: revive.

nolint: revive.

CertificationData_PCKCertificateChain is the PCK certificate chain certification data.

CertificationData_PPID is the PPID certification data.

CertificationData_QEReport is the QE report certification data that contains nested certification data.

EnclaveTCBLevel is the enclave TCB level.

HTTPClientConfig is the Intel SGX PCS client configuration.

PCKInfo contains information extracted from the PCK certificate.

QEIdentity is the Quoting Enclave identity.

Quote is an enclave quote.

QuoteBundle is an attestation quote together with the TCB bundle required for its verification.

QuoteHeaderV3 is a V3 quote header.

QuoteHeaderV4 is a V4 quote header.

QuotePolicy is the quote validity policy.

QuoteSignatureECDSA_P256 is an ECDSA-P256 quote signature.

SGXExtension is an ASN1 SGX extension.

SgxReport is an SGX enclave report body.

SignedQEIdentity is the signed Quoting Enclave identity.

SignedTCBInfo is the signed TCB info structure.

TCBBundle contains all the required components to verify a quote's TCB.

TCBComponent is a TCB component.

TCBInfo is the TCB info body.

TCBLevel is a platform TCB level.

TCBOutOfDateError is an error saying that the TCB of the platform or enclave is out of date.

TdReport is a TDX TD report body.

TDXModule is a representation of the properties of Intel's TDX SEAM module.

TDXModuleIdentity is a representation of the identity of the Intel's TDX SEAM module in case the platform supports more than one TDX SEAM module.

TdxModulePolicy is the TDX module policy.

TdxQuotePolicy is the TDX-specific quote policy.

CertificationData is the data required to verify the QE Report signature.

Client is an Intel SGX PCS client interface.

QuoteHeader is the quote header interface.

QuoteService is a service for resolving raw quotes into quote bundles that include all of the needed collateral.

QuoteSignature is a quote signature.

ReportBody is the report body contained in the quote.

AttestationKeyType is the attestation key type.

CertificationDataType is the type of data required to verify the QE Report signature in the QuoteSignature data structure.

SignatureECDSA_P256 is an ECDSA-P256 signature in the form r || s.

TCBKind is the kind of the TCB.

TCBStatus is the TCB status.

TdAttributes are the TDX TD attributes.

TeeType is the TEE type.

UpdateType is the type of update to TCB info.