Skip to main content

MachineId

lexe_enclave::enclave

Struct MachineId 

Source 
pub struct MachineId(/* private fields */);
Expand description

A unique identifier for a particular hardware enclave.

The intention with this identifier is to compactly communicate whether a piece of hardware with this id (in its current state) has the capability to unseal some Sealed data that was sealed on hardware possessing the same id.

An easy way to show unsealing capability is to actually derive a key from the SGX platform. Rather than encrypting some data with this key, we’ll instead use it as a public identifier. For different enclaves to still derive the same machine id, we’ll use the enclave signer (Lexe) in our key derivation instead of the per-enclave measurement.

As an added bonus, if the machine operator ever bumps the OWNER_EPOCH in the BIOS, the machine id will automatically change to a different value, correctly reflecting this machine’s inability to unseal the old data.

NOTE: on SGX this capability is modulo the CPUSVN (i.e., doesn’t commit to the CPUSVN) since it allows us to easily upgrade the SGX TCB platform without needing to also online-migrate sealed enclave state.

Implementations§

Source§

impl MachineId

Source

pub const MOCK: Self

Source

pub const fn new(bytes: [u8; 16]) -> Self

Trait Implementations§

Source§

impl AsRef<[u8]> for MachineId

Source§

fn as_ref(&self) -> &[u8]

Converts this type into a shared reference of the (usually inferred) input type.
Source§

impl AsRef<[u8; 16]> for MachineId

Source§

fn as_ref(&self) -> &[u8; 16]

Converts this type into a shared reference of the (usually inferred) input type.
Source§

impl ByteArray<16> for MachineId

Source§

fn from_array(array: [u8; 16]) -> Self

Source§

fn to_array(&self) -> [u8; 16]

Source§

fn as_array(&self) -> &[u8; 16]

Source§

fn as_slice(&self) -> &[u8]

Source§

fn to_vec(&self) -> Vec<u8>

Source§

fn try_from_slice(slice: &[u8]) -> Result<Self, TryFromSliceError>

Source§

fn try_from_vec(vec: Vec<u8>) -> Result<Self, TryFromSliceError>

Source§

fn from_hex(s: &str) -> Result<Self, DecodeError>

Source§

fn to_hex(&self) -> String

Source§

fn as_hex_display(&self) -> HexDisplay<'_>

Source§

fn fmt_as_hex(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Source§

impl Clone for MachineId

Source§

fn clone(&self) -> MachineId

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for MachineId

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl<'de> Deserialize<'de> for MachineId

Source§

fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl Display for MachineId

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl FromHex for MachineId

Source§

fn from_hex(s: &str) -> Result<Self, DecodeError>

Source§

impl FromStr for MachineId

Source§

type Err = DecodeError

The associated error which can be returned from parsing.
Source§

fn from_str(s: &str) -> Result<Self, Self::Err>

Parses a string s to return a value of this type. Read more
Source§

impl Hash for MachineId

Source§

fn hash<__H: Hasher>(&self, state: &mut __H)

Feeds this value into the given Hasher. Read more
1.3.0 · Source§

fn hash_slice<H>(data: &[Self], state: &mut H)
where H: Hasher, Self: Sized,

Feeds a slice of this type into the given Hasher. Read more
Source§

impl Ord for MachineId

Source§

fn cmp(&self, other: &MachineId) -> Ordering

This method returns an Ordering between self and other. Read more
1.21.0 · Source§

fn max(self, other: Self) -> Self
where Self: Sized,

Compares and returns the maximum of two values. Read more
1.21.0 · Source§

fn min(self, other: Self) -> Self
where Self: Sized,

Compares and returns the minimum of two values. Read more
1.50.0 · Source§

fn clamp(self, min: Self, max: Self) -> Self
where Self: Sized,

Restrict a value to a certain interval. Read more
Source§

impl PartialEq for MachineId

Source§

fn eq(&self, other: &MachineId) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl PartialOrd for MachineId

Source§

fn partial_cmp(&self, other: &MachineId) -> Option<Ordering>

This method returns an ordering between self and other values if one exists. Read more
1.0.0 · Source§

fn lt(&self, other: &Rhs) -> bool

Tests less than (for self and other) and is used by the < operator. Read more
1.0.0 · Source§

fn le(&self, other: &Rhs) -> bool

Tests less than or equal to (for self and other) and is used by the <= operator. Read more
1.0.0 · Source§

fn gt(&self, other: &Rhs) -> bool

Tests greater than (for self and other) and is used by the > operator. Read more
1.0.0 · Source§

fn ge(&self, other: &Rhs) -> bool

Tests greater than or equal to (for self and other) and is used by the >= operator. Read more
Source§

impl RefCast for MachineId

Source§

type From = [u8; 16]

Source§

fn ref_cast(_from: &Self::From) -> &Self

Source§

fn ref_cast_mut(_from: &mut Self::From) -> &mut Self

Source§

impl Serialize for MachineId

Source§

fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
where S: Serializer,

Serialize this value into the given Serde serializer. Read more
Source§

impl Copy for MachineId

Source§

impl Eq for MachineId

Source§

impl StructuralPartialEq for MachineId

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<F, T, U> Apply<F, U> for T
where F: FnOnce(T) -> U,

Source§

fn apply(self, f: F) -> U

Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T> ToString for T
where T: Display + ?Sized,

Source§

fn to_string(&self) -> String

Converts the given value to a String. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,