sgx 0.6.1

Library for Intel SGX
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193

// SPDX-License-Identifier: Apache-2.0

//! SGX PCK Certificate parsing
//!
//! see 1.3.5 IntelĀ® SGX PCK Certificate of https://download.01.org/intel-sgx/sgx-dcap/1.10.3/linux/docs/SGX_PCK_Certificate_CRL_Spec-1.4.pdf

use const_oid::{AssociatedOid, ObjectIdentifier};
use der::{Enumerated, Sequence};

#[derive(Sequence)]
pub struct SgxExtensionRaw<'a> {
    pub ppid: PpID<'a>,
    pub tcb: Tcb<'a>,
    pub pceid: PceID<'a>,
    pub fmspc: FmSpc<'a>,
    pub sgx_type: SGXType,
    pub platform_instance: Option<PlatformInstanceID<'a>>, // Only on multi-CPU "Platform" systems
    pub platform_config: Option<PlatformConfiguration>,    // Only on multi-CPU "Platform" systems
}

impl<'a> AssociatedOid for SgxExtensionRaw<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1");
}

#[derive(Sequence)]
pub struct PpID<'a> {
    pub oid: ObjectIdentifier,

    #[asn1(type = "OCTET STRING")]
    pub bytes: &'a [u8],
}

impl<'a> AssociatedOid for PpID<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.1");
}

#[derive(Sequence)]
pub struct Tcb<'a> {
    pub oid: ObjectIdentifier, // 1.2.840.113741.1.13.1.2
    pub inner: TCBInner<'a>,
}

impl<'a> AssociatedOid for Tcb<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.2");
}

#[derive(Sequence)]
pub struct TCBInner<'a> {
    pub tcb1: TCBElement, // 1.2.840.113741.1.13.1.2.1
    pub tcb2: TCBElement, // 1.2.840.113741.1.13.1.2.2
    pub tcb3: TCBElement,
    pub tcb4: TCBElement,
    pub tcb5: TCBElement,
    pub tcb6: TCBElement,
    pub tcb7: TCBElement,
    pub tcb8: TCBElement,
    pub tcb9: TCBElement,
    pub tcb10: TCBElement,
    pub tcb11: TCBElement,
    pub tcb12: TCBElement,
    pub tcb13: TCBElement,
    pub tcb14: TCBElement,
    pub tcb15: TCBElement,
    pub tcb16: TCBElement,
    pub pcesvn: TcbPceSvn,
    pub cpusvn: TcbCpuSvn<'a>,
}

#[derive(Sequence)]
pub struct TCBElement {
    pub oid: ObjectIdentifier,
    pub value: u8,
}

#[derive(Sequence)]
pub struct TcbPceSvn {
    pub oid: ObjectIdentifier,
    pub value: u8,
}

impl AssociatedOid for TcbPceSvn {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.2.17");
}

#[derive(Sequence)]
pub struct TcbCpuSvn<'a> {
    pub oid: ObjectIdentifier,
    #[asn1(type = "OCTET STRING")]
    pub bytes: &'a [u8],
}

impl<'a> AssociatedOid for TcbCpuSvn<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.2.18");
}

#[derive(Sequence)]
pub struct PceID<'a> {
    pub oid: ObjectIdentifier,
    #[asn1(type = "OCTET STRING")]
    pub bytes: &'a [u8],
}

impl<'a> AssociatedOid for PceID<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.3");
}

#[derive(Sequence)]
pub struct FmSpc<'a> {
    pub oid: ObjectIdentifier,
    #[asn1(type = "OCTET STRING")]
    pub bytes: &'a [u8],
}

impl<'a> AssociatedOid for FmSpc<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.4");
}

#[derive(Sequence)]
pub struct SGXType {
    pub oid: ObjectIdentifier,
    pub sgx_type: SGXEnumeration,
}

impl AssociatedOid for SGXType {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.5");
}

#[derive(Enumerated, Copy, Clone)]
#[repr(u8)]
pub enum SGXEnumeration {
    Standard = 0,
    Scalable = 1,
}

// The following items are only present on multi-CPU systems

#[derive(Sequence)]
pub struct PlatformInstanceID<'a> {
    pub oid: ObjectIdentifier,
    #[asn1(type = "OCTET STRING")]
    pub bytes: &'a [u8],
}

impl<'a> AssociatedOid for PlatformInstanceID<'a> {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.6");
}

#[derive(Sequence)]
pub struct PlatformConfiguration {
    pub oid: ObjectIdentifier,
    pub inner: PlatformConfigurationInner,
}

impl AssociatedOid for PlatformConfiguration {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.7");
}

#[derive(Sequence)]
pub struct PlatformConfigurationInner {
    pub dynamic: DynamicPlatform,
    pub cached_keys: CachedKeys,
    pub smt: SMTEnabled,
}

#[derive(Sequence)]
pub struct DynamicPlatform {
    pub oid: ObjectIdentifier,
    pub is_dynamic: bool,
}

impl AssociatedOid for DynamicPlatform {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.7.1");
}

#[derive(Sequence)]
pub struct CachedKeys {
    pub oid: ObjectIdentifier,
    pub cached_keys: bool,
}

impl AssociatedOid for CachedKeys {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.7.2");
}

#[derive(Sequence)]
pub struct SMTEnabled {
    pub oid: ObjectIdentifier,
    pub has_smt: bool,
}

impl AssociatedOid for SMTEnabled {
    const OID: ObjectIdentifier = ObjectIdentifier::new_unwrap("1.2.840.113741.1.13.1.7.3");
}