Expand description
SGX Attestation module for Gramine
This module provides SGX DCAP attestation functionality through Gramine’s /dev/attestation pseudo-filesystem interface.
§Overview
- Reads SGX quotes from
/dev/attestation/quote - Supports custom user report data (e.g., node public key hash)
- Returns base64-encoded quote and certificate chain for remote verification
§Usage
let report = get_attestation_report(Some(b"my-custom-data"))?;
// Send report.quote to remote verifierStructs§
- Attestation
Report - SGX attestation report containing quote and metadata
Enums§
Functions§
- get_
attestation_ report - Generate an SGX attestation report with optional user data
- get_
attestation_ type - Get the attestation type (e.g., “none” or “dcap”)
- get_
attestation_ with_ pubkey - Get attestation report with node’s public key embedded
- is_
attestation_ available - Check if SGX attestation is available