EnclaveVerifyAttestationReport function (winenclaveapi.h)
Verifies an attestation report that was generated on the current system.
Syntax
HRESULT EnclaveVerifyAttestationReport(
[in] UINT32 EnclaveType,
[in] const VOID *Report,
[in] UINT32 ReportSize
);
Parameters
[in] EnclaveType
The type of the enclave for which the report was generated. Must be ENCLAVE_TYPE_VBS.
[in] Report
A pointer to a buffer that stores the report. This report may be stored either within the address range of the enclave or within the address space of the host process.
[in] ReportSize
The size of the report, in bytes.
Return value
If this function succeeds, it returns S_OK. Otherwise, it returns an HRESULT error code.
Remarks
This function is used if two enclaves run on the same system and need to establish a secure channel between one another. When you call EnclaveVerifyAttestationReport from a virtualization-based security (VBS) enclave, you can only use EnclaveVerifyAttestationReport to validate an attestation report that another VBS enclave generated.
EnclaveVerifyAttestationReport must be called from within an enclave, and is only supported within enclaves that have the ENCLAVE_TYPE_VBS enclave type.
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows 10, version 1709 [desktop apps only] |
| Minimum supported server | Windows Server 2016 [desktop apps only] |
| Target Platform | Windows |
| Header | winenclaveapi.h |
| Library | Vertdll.lib |
| DLL | Vertdll.dll |