Home | History | Annotate | Download | only in html
      1 <!-- HTML header for doxygen 1.8.10-->
      2 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
      3 <html xmlns="http://www.w3.org/1999/xhtml">
      4 <head>
      5 <meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/>
      6 <meta http-equiv="X-UA-Compatible" content="IE=9"/>
      7 <meta name="generator" content="Doxygen 1.8.14"/>
      8 <title>Intel&reg; Enhanced Privacy ID SDK: Intel(R) EPID 1.1 support</title>
      9 <link href="tabs.css" rel="stylesheet" type="text/css"/>
     10 <script type="text/javascript" src="jquery.js"></script>
     11 <script type="text/javascript" src="dynsections.js"></script>
     12 <link href="navtree.css" rel="stylesheet" type="text/css"/>
     13 <script type="text/javascript" src="resize.js"></script>
     14 <script type="text/javascript" src="navtreedata.js"></script>
     15 <script type="text/javascript" src="navtree.js"></script>
     16 <script type="text/javascript">
     17 /* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&amp;dn=gpl-2.0.txt GPL-v2 */
     18   $(document).ready(initResizable);
     19 /* @license-end */</script>
     20 <link href="doxygen.css" rel="stylesheet" type="text/css" />
     21 <link href="epidstyle.css" rel="stylesheet" type="text/css"/>
     22 </head>
     23 <body>
     24 <div id="top"><!-- do not remove this div, it is closed by doxygen! -->
     25 <div id="titlearea">
     26 <table cellspacing="0" cellpadding="0">
     27  <tbody>
     28  <tr style="height: 56px;">
     29   <td id="projectalign" style="padding-left: 0.5em;">
     30    <div id="projectname"><a 
     31                             onclick="storeLink('index.html')"
     32                             id="projectlink" 
     33                             class="index.html" 
     34                             href="index.html">Intel&reg; Enhanced Privacy ID SDK</a>
     35 &#160;<span id="projectnumber">6.0.1</span>
     36 </div>
     37   </td>
     38  </tr>
     39  </tbody>
     40 </table>
     41 </div>
     42 <!-- end header part -->
     43 <!-- Generated by Doxygen 1.8.14 -->
     44 </div><!-- top -->
     45 <div id="side-nav" class="ui-resizable side-nav-resizable">
     46   <div id="nav-tree">
     47     <div id="nav-tree-contents">
     48       <div id="nav-sync" class="sync"></div>
     49     </div>
     50   </div>
     51   <div id="splitbar" style="-moz-user-select:none;" 
     52        class="ui-resizable-handle">
     53   </div>
     54 </div>
     55 <script type="text/javascript">
     56 /* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&amp;dn=gpl-2.0.txt GPL-v2 */
     57 $(document).ready(function(){initNavTree('group___epid11_verifier_module.html','');});
     58 /* @license-end */
     59 </script>
     60 <div id="doc-content">
     61 <div class="header">
     62   <div class="summary">
     63 <a href="#nested-classes">Data Structures</a> &#124;
     64 <a href="#typedef-members">Typedefs</a> &#124;
     65 <a href="#func-members">Functions</a>  </div>
     66   <div class="headertitle">
     67 <div class="title">Intel(R) EPID 1.1 support<div class="ingroups"><a class="el" href="group___epid_module.html">epid&amp;nbsp;</a> &raquo; <a class="el" href="group___epid_verifier_module.html">verifier</a></div></div>  </div>
     68 </div><!--header-->
     69 <div class="contents">
     70 
     71 <p>Intel(R) EPID 1.1 Verifier functionality.  
     72 <a href="#details">More...</a></p>
     73 <table class="memberdecls">
     74 <tr class="heading"><td colspan="2"><h2 class="groupheader"><a name="nested-classes"></a>
     75 Data Structures</h2></td></tr>
     76 <tr class="memitem:"><td class="memItemLeft" align="right" valign="top">struct &#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="struct_epid11_verifier_precomp.html">Epid11VerifierPrecomp</a></td></tr>
     77 <tr class="memdesc:"><td class="mdescLeft">&#160;</td><td class="mdescRight">Intel(R) EPID 1.1 Pre-computed verifier settings.  <a href="struct_epid11_verifier_precomp.html#details">More...</a><br /></td></tr>
     78 <tr class="separator:"><td class="memSeparator" colspan="2">&#160;</td></tr>
     79 </table><table class="memberdecls">
     80 <tr class="heading"><td colspan="2"><h2 class="groupheader"><a name="typedef-members"></a>
     81 Typedefs</h2></td></tr>
     82 <tr class="memitem:gabe6a864a06322205ae7536ffea34c702"><td class="memItemLeft" align="right" valign="top"><a id="gabe6a864a06322205ae7536ffea34c702"></a>
     83 typedef struct <a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a></td></tr>
     84 <tr class="memdesc:gabe6a864a06322205ae7536ffea34c702"><td class="mdescLeft">&#160;</td><td class="mdescRight">Internal context of Intel(R) EPID 1.1 verifier. <br /></td></tr>
     85 <tr class="separator:gabe6a864a06322205ae7536ffea34c702"><td class="memSeparator" colspan="2">&#160;</td></tr>
     86 </table><table class="memberdecls">
     87 <tr class="heading"><td colspan="2"><h2 class="groupheader"><a name="func-members"></a>
     88 Functions</h2></td></tr>
     89 <tr class="memitem:gac5a8f8d7624063ea428d81dbdbf61fa8"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8">Epid11VerifierCreate</a> (<a class="el" href="struct_epid11_group_pub_key.html">Epid11GroupPubKey</a> const *pub_key, <a class="el" href="struct_epid11_verifier_precomp.html">Epid11VerifierPrecomp</a> const *precomp, <a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> **ctx)</td></tr>
     90 <tr class="memdesc:gac5a8f8d7624063ea428d81dbdbf61fa8"><td class="mdescLeft">&#160;</td><td class="mdescRight">Creates a new Intel(R) EPID 1.1 verifier context.  <a href="#gac5a8f8d7624063ea428d81dbdbf61fa8">More...</a><br /></td></tr>
     91 <tr class="separator:gac5a8f8d7624063ea428d81dbdbf61fa8"><td class="memSeparator" colspan="2">&#160;</td></tr>
     92 <tr class="memitem:ga63cae8d5abcf4d7e3af4157de18998f1"><td class="memItemLeft" align="right" valign="top">void&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga63cae8d5abcf4d7e3af4157de18998f1">Epid11VerifierDelete</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> **ctx)</td></tr>
     93 <tr class="memdesc:ga63cae8d5abcf4d7e3af4157de18998f1"><td class="mdescLeft">&#160;</td><td class="mdescRight">Deletes an existing Intel(R) EPID 1.1 verifier context.  <a href="#ga63cae8d5abcf4d7e3af4157de18998f1">More...</a><br /></td></tr>
     94 <tr class="separator:ga63cae8d5abcf4d7e3af4157de18998f1"><td class="memSeparator" colspan="2">&#160;</td></tr>
     95 <tr class="memitem:ga241520cb925e5be89893a2037451cf1c"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga241520cb925e5be89893a2037451cf1c">Epid11VerifierWritePrecomp</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *ctx, <a class="el" href="struct_epid11_verifier_precomp.html">Epid11VerifierPrecomp</a> *precomp)</td></tr>
     96 <tr class="memdesc:ga241520cb925e5be89893a2037451cf1c"><td class="mdescLeft">&#160;</td><td class="mdescRight">Serializes the pre-computed Intel(R) EPID 1.1 verifier settings.  <a href="#ga241520cb925e5be89893a2037451cf1c">More...</a><br /></td></tr>
     97 <tr class="separator:ga241520cb925e5be89893a2037451cf1c"><td class="memSeparator" colspan="2">&#160;</td></tr>
     98 <tr class="memitem:gaffbe6ac2bc7236ad65126a17ebdceb14"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#gaffbe6ac2bc7236ad65126a17ebdceb14">Epid11VerifierSetPrivRl</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *ctx, <a class="el" href="struct_epid11_priv_rl.html">Epid11PrivRl</a> const *priv_rl, size_t priv_rl_size)</td></tr>
     99 <tr class="memdesc:gaffbe6ac2bc7236ad65126a17ebdceb14"><td class="mdescLeft">&#160;</td><td class="mdescRight">Sets the Intel(R) EPID 1.1 private key based revocation list.  <a href="#gaffbe6ac2bc7236ad65126a17ebdceb14">More...</a><br /></td></tr>
    100 <tr class="separator:gaffbe6ac2bc7236ad65126a17ebdceb14"><td class="memSeparator" colspan="2">&#160;</td></tr>
    101 <tr class="memitem:gaff5a014b0334be7e8583f0f99cb5e9b8"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#gaff5a014b0334be7e8583f0f99cb5e9b8">Epid11VerifierSetSigRl</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *ctx, <a class="el" href="struct_epid11_sig_rl.html">Epid11SigRl</a> const *sig_rl, size_t sig_rl_size)</td></tr>
    102 <tr class="memdesc:gaff5a014b0334be7e8583f0f99cb5e9b8"><td class="mdescLeft">&#160;</td><td class="mdescRight">Sets the Intel(R) EPID 1.1 signature based revocation list.  <a href="#gaff5a014b0334be7e8583f0f99cb5e9b8">More...</a><br /></td></tr>
    103 <tr class="separator:gaff5a014b0334be7e8583f0f99cb5e9b8"><td class="memSeparator" colspan="2">&#160;</td></tr>
    104 <tr class="memitem:ga809c777908b2f9d029062d9424cb5f65"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga809c777908b2f9d029062d9424cb5f65">Epid11VerifierSetGroupRl</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *ctx, <a class="el" href="struct_epid11_group_rl.html">Epid11GroupRl</a> const *grp_rl, size_t grp_rl_size)</td></tr>
    105 <tr class="memdesc:ga809c777908b2f9d029062d9424cb5f65"><td class="mdescLeft">&#160;</td><td class="mdescRight">Sets the Intel(R) EPID 1.1 group based revocation list.  <a href="#ga809c777908b2f9d029062d9424cb5f65">More...</a><br /></td></tr>
    106 <tr class="separator:ga809c777908b2f9d029062d9424cb5f65"><td class="memSeparator" colspan="2">&#160;</td></tr>
    107 <tr class="memitem:ga0cb6d30df527ee0d8f0a1b68d2b7c0c0"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga0cb6d30df527ee0d8f0a1b68d2b7c0c0">Epid11VerifierSetBasename</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *ctx, void const *basename, size_t basename_len)</td></tr>
    108 <tr class="memdesc:ga0cb6d30df527ee0d8f0a1b68d2b7c0c0"><td class="mdescLeft">&#160;</td><td class="mdescRight">Sets the basename to be used by a verifier.  <a href="#ga0cb6d30df527ee0d8f0a1b68d2b7c0c0">More...</a><br /></td></tr>
    109 <tr class="separator:ga0cb6d30df527ee0d8f0a1b68d2b7c0c0"><td class="memSeparator" colspan="2">&#160;</td></tr>
    110 <tr class="memitem:gafe5ad6bde38ad0c3e0a9960975fd5216"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#gafe5ad6bde38ad0c3e0a9960975fd5216">Epid11Verify</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *ctx, <a class="el" href="struct_epid11_signature.html">Epid11Signature</a> const *sig, size_t sig_len, void const *msg, size_t msg_len)</td></tr>
    111 <tr class="memdesc:gafe5ad6bde38ad0c3e0a9960975fd5216"><td class="mdescLeft">&#160;</td><td class="mdescRight">Verifies an Intel(R) EPID 1.1 signature and checks revocation status.  <a href="#gafe5ad6bde38ad0c3e0a9960975fd5216">More...</a><br /></td></tr>
    112 <tr class="separator:gafe5ad6bde38ad0c3e0a9960975fd5216"><td class="memSeparator" colspan="2">&#160;</td></tr>
    113 <tr class="memitem:gab0b6560b226a37321f5ca5d4fb55eba7"><td class="memItemLeft" align="right" valign="top"><a class="el" href="stdtypes_8h.html#ad5c9d4ba3dc37783a528b0925dc981a0">bool</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#gab0b6560b226a37321f5ca5d4fb55eba7">Epid11AreSigsLinked</a> (<a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *sig1, <a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *sig2)</td></tr>
    114 <tr class="memdesc:gab0b6560b226a37321f5ca5d4fb55eba7"><td class="mdescLeft">&#160;</td><td class="mdescRight">Determines if two Intel(R) EPID 1.1 signatures are linked.  <a href="#gab0b6560b226a37321f5ca5d4fb55eba7">More...</a><br /></td></tr>
    115 <tr class="separator:gab0b6560b226a37321f5ca5d4fb55eba7"><td class="memSeparator" colspan="2">&#160;</td></tr>
    116 <tr class="memitem:ga7b5d19277da043c2b79721975d7bd070"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070">Epid11VerifyBasicSig</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *ctx, <a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *sig, void const *msg, size_t msg_len)</td></tr>
    117 <tr class="memdesc:ga7b5d19277da043c2b79721975d7bd070"><td class="mdescLeft">&#160;</td><td class="mdescRight">Verifies an Intel(R) EPID 1.1 member signature without revocation checks.  <a href="#ga7b5d19277da043c2b79721975d7bd070">More...</a><br /></td></tr>
    118 <tr class="separator:ga7b5d19277da043c2b79721975d7bd070"><td class="memSeparator" colspan="2">&#160;</td></tr>
    119 <tr class="memitem:ga3a2e320d7de6156b2ce9d73e9cdce813"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga3a2e320d7de6156b2ce9d73e9cdce813">Epid11NrVerify</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *ctx, <a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *sig, void const *msg, size_t msg_len, <a class="el" href="struct_epid11_sig_rl_entry.html">Epid11SigRlEntry</a> const *sigrl_entry, <a class="el" href="struct_epid11_nr_proof.html">Epid11NrProof</a> const *proof)</td></tr>
    120 <tr class="memdesc:ga3a2e320d7de6156b2ce9d73e9cdce813"><td class="mdescLeft">&#160;</td><td class="mdescRight">Verifies the non-revoked proof for a single Intel(R) EPID 1.1 signature based revocation list entry.  <a href="#ga3a2e320d7de6156b2ce9d73e9cdce813">More...</a><br /></td></tr>
    121 <tr class="separator:ga3a2e320d7de6156b2ce9d73e9cdce813"><td class="memSeparator" colspan="2">&#160;</td></tr>
    122 <tr class="memitem:ga0b79c79d09e3551158e1c38c7c335929"><td class="memItemLeft" align="right" valign="top"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a>&#160;</td><td class="memItemRight" valign="bottom"><a class="el" href="group___epid11_verifier_module.html#ga0b79c79d09e3551158e1c38c7c335929">Epid11CheckPrivRlEntry</a> (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *ctx, <a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *sig, <a class="el" href="struct_fp_elem_str.html">FpElemStr</a> const *f)</td></tr>
    123 <tr class="memdesc:ga0b79c79d09e3551158e1c38c7c335929"><td class="mdescLeft">&#160;</td><td class="mdescRight">Verifies an Intel(R) EPID 1.1 signature has not been revoked in the private key based revocation list.  <a href="#ga0b79c79d09e3551158e1c38c7c335929">More...</a><br /></td></tr>
    124 <tr class="separator:ga0b79c79d09e3551158e1c38c7c335929"><td class="memSeparator" colspan="2">&#160;</td></tr>
    125 </table>
    126 <a name="details" id="details"></a><h2 class="groupheader">Detailed Description</h2>
    127 <p>Intel(R) EPID 1.1 Verifier functionality. </p>
    128 <p>To verify signatures coming from member devices that belong to an Intel&reg; EPID 1.1 group, you need to use Intel&reg; EPID 1.1 verifier APIs.</p>
    129 <p>If you are acting as a verifier for both Intel&reg; EPID 1.1 and 2.0 members, you can determine if you need version 1.1 or 2.0 verification by checking the Intel&reg; EPID version field in the group public key file (see <a class="el" href="group___file_parser.html#ga8e38d1102eb1dd9b5af2e2f79236da55" title="Extracts Intel(R) EPID Binary Output File header information. ">EpidParseFileHeader</a>). You can also check the version in other binary issuer material, such as the GroupRL and SigRL.</p>
    130 <p>The 1.1 verifier APIs take a verifier context as input. Each verifier context (<a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702" title="Internal context of Intel(R) EPID 1.1 verifier. ">Epid11VerifierCtx</a>) represents a verifier for a single group.</p>
    131 <p>The Intel&reg; EPID 1.1 specification does not provide hash algorithm selection and verifier blacklist revocation. Therefore, APIs such as <a class="el" href="group___epid_verifier_module.html#ga97b58b2382f24756b66a357f1e825c92" title="Sets the hash algorithm to be used by a verifier. ">EpidVerifierSetHashAlg</a> and <a class="el" href="group___epid_verifier_module.html#ga0909703a0a4dfe080374d0d99077465a" title="Sets the verifier revocation list. ">EpidVerifierSetVerifierRl</a> are not available.</p>
    132 <p>You can find the Intel&reg; EPID 1.1 API headers in the 1.1 directories, for example, <code>epid/verifier/1.1/api.h</code>.</p>
    133 <p>Intel&reg; EPID 1.1 APIs and data structures are indicated with the "Epid11" prefix. For example, the Intel&reg; EPID 1.1 version of <a class="el" href="group___file_parser.html#ga43fdbc1bf2edd3695d21cb457365afbb" title="Extracts group public key from buffer in issuer binary format. ">EpidParseGroupPubKeyFile</a> is called <a class="el" href="group___epid11_file_parser_module.html#ga1f92d1cb6bd7d9815711fde515b40a4c" title="Extracts group public key from buffer in issuer binary format. ">Epid11ParseGroupPubKeyFile</a>, and the Intel&reg; EPID 1.1 version of <code><a class="el" href="struct_group_rl.html" title="group revocation list ">GroupRl</a></code> is <code><a class="el" href="struct_epid11_group_rl.html" title="Intel(R) EPID 1.1 group revocation list. ">Epid11GroupRl</a></code>. </p>
    134 <h2 class="groupheader">Function Documentation</h2>
    135 <a id="gab0b6560b226a37321f5ca5d4fb55eba7"></a>
    136 <h2 class="memtitle"><span class="permalink"><a href="#gab0b6560b226a37321f5ca5d4fb55eba7">&#9670;&nbsp;</a></span>Epid11AreSigsLinked()</h2>
    137 
    138 <div class="memitem">
    139 <div class="memproto">
    140       <table class="memname">
    141         <tr>
    142           <td class="memname"><a class="el" href="stdtypes_8h.html#ad5c9d4ba3dc37783a528b0925dc981a0">bool</a> Epid11AreSigsLinked </td>
    143           <td>(</td>
    144           <td class="paramtype"><a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *&#160;</td>
    145           <td class="paramname"><em>sig1</em>, </td>
    146         </tr>
    147         <tr>
    148           <td class="paramkey"></td>
    149           <td></td>
    150           <td class="paramtype"><a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *&#160;</td>
    151           <td class="paramname"><em>sig2</em>&#160;</td>
    152         </tr>
    153         <tr>
    154           <td></td>
    155           <td>)</td>
    156           <td></td><td></td>
    157         </tr>
    158       </table>
    159 </div><div class="memdoc">
    160 
    161 <p>Determines if two Intel(R) EPID 1.1 signatures are linked. </p>
    162 <p>The Intel(R) EPID scheme allows signatures to be linked. If basename option is specified when signing signatures with the same basename will be linkable. This linking capability allows the verifier, or anyone, to know whether two Intel(R) EPID signatures are generated by the same member.</p>
    163 <p>This API supports Intel(R) EPID 1.1 verification.</p>
    164 <dl class="params"><dt>Parameters</dt><dd>
    165   <table class="params">
    166     <tr><td class="paramdir">[in]</td><td class="paramname">sig1</td><td>A basic signature. </td></tr>
    167     <tr><td class="paramdir">[in]</td><td class="paramname">sig2</td><td>A basic signature.</td></tr>
    168   </table>
    169   </dd>
    170 </dl>
    171 <dl class="section return"><dt>Returns</dt><dd>bool</dd></dl>
    172 <dl class="retval"><dt>Return values</dt><dd>
    173   <table class="retval">
    174     <tr><td class="paramname">true</td><td>if the signatures were generated by the same member </td></tr>
    175     <tr><td class="paramname">false</td><td>if it couldn't be determined if the signatures were generated by the same member</td></tr>
    176   </table>
    177   </dd>
    178 </dl>
    179 <dl class="section note"><dt>Note</dt><dd>The input signatures should be verified using <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig()</a> before invocation. Behavior is undefined if either of the signatures cannot be verified.</dd></dl>
    180 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig</a> </dd>
    181 <dd>
    182 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    183 
    184 </div>
    185 </div>
    186 <a id="ga0b79c79d09e3551158e1c38c7c335929"></a>
    187 <h2 class="memtitle"><span class="permalink"><a href="#ga0b79c79d09e3551158e1c38c7c335929">&#9670;&nbsp;</a></span>Epid11CheckPrivRlEntry()</h2>
    188 
    189 <div class="memitem">
    190 <div class="memproto">
    191       <table class="memname">
    192         <tr>
    193           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11CheckPrivRlEntry </td>
    194           <td>(</td>
    195           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *&#160;</td>
    196           <td class="paramname"><em>ctx</em>, </td>
    197         </tr>
    198         <tr>
    199           <td class="paramkey"></td>
    200           <td></td>
    201           <td class="paramtype"><a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *&#160;</td>
    202           <td class="paramname"><em>sig</em>, </td>
    203         </tr>
    204         <tr>
    205           <td class="paramkey"></td>
    206           <td></td>
    207           <td class="paramtype"><a class="el" href="struct_fp_elem_str.html">FpElemStr</a> const *&#160;</td>
    208           <td class="paramname"><em>f</em>&#160;</td>
    209         </tr>
    210         <tr>
    211           <td></td>
    212           <td>)</td>
    213           <td></td><td></td>
    214         </tr>
    215       </table>
    216 </div><div class="memdoc">
    217 
    218 <p>Verifies an Intel(R) EPID 1.1 signature has not been revoked in the private key based revocation list. </p>
    219 <p>Used in constrained environments where, due to limited memory, it may not be possible to process through a large and potentially unbounded revocation list.</p>
    220 <p>This API supports Intel(R) EPID 1.1 verification.</p>
    221 <dl class="params"><dt>Parameters</dt><dd>
    222   <table class="params">
    223     <tr><td class="paramdir">[in]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    224     <tr><td class="paramdir">[in]</td><td class="paramname">sig</td><td>The basic signature. </td></tr>
    225     <tr><td class="paramdir">[in]</td><td class="paramname">f</td><td>The private key based revocation list entry.</td></tr>
    226   </table>
    227   </dd>
    228 </dl>
    229 <dl class="section note"><dt>Note</dt><dd>Sig should be verified using <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig()</a> before invocation. Behavior is undefined if sig cannot be verified.</dd>
    230 <dd>
    231 This function should be used in conjunction with <a class="el" href="group___epid11_verifier_module.html#ga3a2e320d7de6156b2ce9d73e9cdce813" title="Verifies the non-revoked proof for a single Intel(R) EPID 1.1 signature based revocation list entry...">Epid11NrVerify()</a> and <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig()</a>.</dd>
    232 <dd>
    233 If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the verify should de considered to have failed.</dd></dl>
    234 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a> </dd></dl>
    235 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    236 <dd>
    237 <a class="el" href="group___epid11_verifier_module.html#ga3a2e320d7de6156b2ce9d73e9cdce813" title="Verifies the non-revoked proof for a single Intel(R) EPID 1.1 signature based revocation list entry...">Epid11NrVerify</a> </dd>
    238 <dd>
    239 <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig</a> </dd>
    240 <dd>
    241 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    242 
    243 </div>
    244 </div>
    245 <a id="ga3a2e320d7de6156b2ce9d73e9cdce813"></a>
    246 <h2 class="memtitle"><span class="permalink"><a href="#ga3a2e320d7de6156b2ce9d73e9cdce813">&#9670;&nbsp;</a></span>Epid11NrVerify()</h2>
    247 
    248 <div class="memitem">
    249 <div class="memproto">
    250       <table class="memname">
    251         <tr>
    252           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11NrVerify </td>
    253           <td>(</td>
    254           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *&#160;</td>
    255           <td class="paramname"><em>ctx</em>, </td>
    256         </tr>
    257         <tr>
    258           <td class="paramkey"></td>
    259           <td></td>
    260           <td class="paramtype"><a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *&#160;</td>
    261           <td class="paramname"><em>sig</em>, </td>
    262         </tr>
    263         <tr>
    264           <td class="paramkey"></td>
    265           <td></td>
    266           <td class="paramtype">void const *&#160;</td>
    267           <td class="paramname"><em>msg</em>, </td>
    268         </tr>
    269         <tr>
    270           <td class="paramkey"></td>
    271           <td></td>
    272           <td class="paramtype">size_t&#160;</td>
    273           <td class="paramname"><em>msg_len</em>, </td>
    274         </tr>
    275         <tr>
    276           <td class="paramkey"></td>
    277           <td></td>
    278           <td class="paramtype"><a class="el" href="struct_epid11_sig_rl_entry.html">Epid11SigRlEntry</a> const *&#160;</td>
    279           <td class="paramname"><em>sigrl_entry</em>, </td>
    280         </tr>
    281         <tr>
    282           <td class="paramkey"></td>
    283           <td></td>
    284           <td class="paramtype"><a class="el" href="struct_epid11_nr_proof.html">Epid11NrProof</a> const *&#160;</td>
    285           <td class="paramname"><em>proof</em>&#160;</td>
    286         </tr>
    287         <tr>
    288           <td></td>
    289           <td>)</td>
    290           <td></td><td></td>
    291         </tr>
    292       </table>
    293 </div><div class="memdoc">
    294 
    295 <p>Verifies the non-revoked proof for a single Intel(R) EPID 1.1 signature based revocation list entry. </p>
    296 <p>Used in constrained environments where, due to limited memory, it may not be possible to process through a large and potentially unbounded revocation list.</p>
    297 <p>This API supports Intel(R) EPID 1.1 verification.</p>
    298 <dl class="params"><dt>Parameters</dt><dd>
    299   <table class="params">
    300     <tr><td class="paramdir">[in]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    301     <tr><td class="paramdir">[in]</td><td class="paramname">sig</td><td>The basic signature. </td></tr>
    302     <tr><td class="paramdir">[in]</td><td class="paramname">msg</td><td>The message that was signed. </td></tr>
    303     <tr><td class="paramdir">[in]</td><td class="paramname">msg_len</td><td>The size of msg in bytes. </td></tr>
    304     <tr><td class="paramdir">[in]</td><td class="paramname">sigrl_entry</td><td>The signature based revocation list entry. </td></tr>
    305     <tr><td class="paramdir">[in]</td><td class="paramname">proof</td><td>The non-revoked proof.</td></tr>
    306   </table>
    307   </dd>
    308 </dl>
    309 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    310 <dl class="section note"><dt>Note</dt><dd>Sig should be verified using <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig()</a> before invocation. Behavior is undefined if sig cannot be verified.</dd>
    311 <dd>
    312 This function should be used in conjunction with <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig()</a> and <a class="el" href="group___epid11_verifier_module.html#ga0b79c79d09e3551158e1c38c7c335929" title="Verifies an Intel(R) EPID 1.1 signature has not been revoked in the private key based revocation list...">Epid11CheckPrivRlEntry()</a>.</dd>
    313 <dd>
    314 If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the verify should de considered to have failed.</dd></dl>
    315 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    316 <dd>
    317 <a class="el" href="group___epid11_verifier_module.html#ga7b5d19277da043c2b79721975d7bd070" title="Verifies an Intel(R) EPID 1.1 member signature without revocation checks. ">Epid11VerifyBasicSig</a> </dd>
    318 <dd>
    319 <a class="el" href="group___epid11_verifier_module.html#ga0b79c79d09e3551158e1c38c7c335929" title="Verifies an Intel(R) EPID 1.1 signature has not been revoked in the private key based revocation list...">Epid11CheckPrivRlEntry</a> </dd>
    320 <dd>
    321 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    322 
    323 </div>
    324 </div>
    325 <a id="gac5a8f8d7624063ea428d81dbdbf61fa8"></a>
    326 <h2 class="memtitle"><span class="permalink"><a href="#gac5a8f8d7624063ea428d81dbdbf61fa8">&#9670;&nbsp;</a></span>Epid11VerifierCreate()</h2>
    327 
    328 <div class="memitem">
    329 <div class="memproto">
    330       <table class="memname">
    331         <tr>
    332           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifierCreate </td>
    333           <td>(</td>
    334           <td class="paramtype"><a class="el" href="struct_epid11_group_pub_key.html">Epid11GroupPubKey</a> const *&#160;</td>
    335           <td class="paramname"><em>pub_key</em>, </td>
    336         </tr>
    337         <tr>
    338           <td class="paramkey"></td>
    339           <td></td>
    340           <td class="paramtype"><a class="el" href="struct_epid11_verifier_precomp.html">Epid11VerifierPrecomp</a> const *&#160;</td>
    341           <td class="paramname"><em>precomp</em>, </td>
    342         </tr>
    343         <tr>
    344           <td class="paramkey"></td>
    345           <td></td>
    346           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> **&#160;</td>
    347           <td class="paramname"><em>ctx</em>&#160;</td>
    348         </tr>
    349         <tr>
    350           <td></td>
    351           <td>)</td>
    352           <td></td><td></td>
    353         </tr>
    354       </table>
    355 </div><div class="memdoc">
    356 
    357 <p>Creates a new Intel(R) EPID 1.1 verifier context. </p>
    358 <p>Must be called to create the verifier context that is used by other "Verifier" APIs.</p>
    359 <p>Allocates memory for the context, then initialize it.</p>
    360 <p><a class="el" href="group___epid11_verifier_module.html#ga63cae8d5abcf4d7e3af4157de18998f1" title="Deletes an existing Intel(R) EPID 1.1 verifier context. ">Epid11VerifierDelete()</a> must be called to safely release the member context.</p>
    361 <dl class="params"><dt>Parameters</dt><dd>
    362   <table class="params">
    363     <tr><td class="paramdir">[in]</td><td class="paramname">pub_key</td><td>The group certificate. </td></tr>
    364     <tr><td class="paramdir">[in]</td><td class="paramname">precomp</td><td>Optional pre-computed data. If NULL the value is computed internally and is readable using <a class="el" href="group___epid11_verifier_module.html#ga241520cb925e5be89893a2037451cf1c" title="Serializes the pre-computed Intel(R) EPID 1.1 verifier settings. ">Epid11VerifierWritePrecomp()</a>. </td></tr>
    365     <tr><td class="paramdir">[out]</td><td class="paramname">ctx</td><td>Newly constructed verifier context.</td></tr>
    366   </table>
    367   </dd>
    368 </dl>
    369 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    370 <dl class="section note"><dt>Note</dt><dd>If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the content of ctx is undefined.</dd></dl>
    371 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#ga63cae8d5abcf4d7e3af4157de18998f1" title="Deletes an existing Intel(R) EPID 1.1 verifier context. ">Epid11VerifierDelete</a> </dd>
    372 <dd>
    373 <a class="el" href="group___epid11_verifier_module.html#ga241520cb925e5be89893a2037451cf1c" title="Serializes the pre-computed Intel(R) EPID 1.1 verifier settings. ">Epid11VerifierWritePrecomp</a> </dd>
    374 <dd>
    375 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    376 
    377 </div>
    378 </div>
    379 <a id="ga63cae8d5abcf4d7e3af4157de18998f1"></a>
    380 <h2 class="memtitle"><span class="permalink"><a href="#ga63cae8d5abcf4d7e3af4157de18998f1">&#9670;&nbsp;</a></span>Epid11VerifierDelete()</h2>
    381 
    382 <div class="memitem">
    383 <div class="memproto">
    384       <table class="memname">
    385         <tr>
    386           <td class="memname">void Epid11VerifierDelete </td>
    387           <td>(</td>
    388           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> **&#160;</td>
    389           <td class="paramname"><em>ctx</em></td><td>)</td>
    390           <td></td>
    391         </tr>
    392       </table>
    393 </div><div class="memdoc">
    394 
    395 <p>Deletes an existing Intel(R) EPID 1.1 verifier context. </p>
    396 <p>Must be called to safely release a verifier context created using <a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate()</a>.</p>
    397 <p>De-initializes the context, frees memory used by the context, and sets the context pointer to NULL.</p>
    398 <dl class="params"><dt>Parameters</dt><dd>
    399   <table class="params">
    400     <tr><td class="paramdir">[in,out]</td><td class="paramname">ctx</td><td>The verifier context. Can be NULL.</td></tr>
    401   </table>
    402   </dd>
    403 </dl>
    404 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    405 <dd>
    406 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    407 
    408 </div>
    409 </div>
    410 <a id="ga0cb6d30df527ee0d8f0a1b68d2b7c0c0"></a>
    411 <h2 class="memtitle"><span class="permalink"><a href="#ga0cb6d30df527ee0d8f0a1b68d2b7c0c0">&#9670;&nbsp;</a></span>Epid11VerifierSetBasename()</h2>
    412 
    413 <div class="memitem">
    414 <div class="memproto">
    415       <table class="memname">
    416         <tr>
    417           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifierSetBasename </td>
    418           <td>(</td>
    419           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *&#160;</td>
    420           <td class="paramname"><em>ctx</em>, </td>
    421         </tr>
    422         <tr>
    423           <td class="paramkey"></td>
    424           <td></td>
    425           <td class="paramtype">void const *&#160;</td>
    426           <td class="paramname"><em>basename</em>, </td>
    427         </tr>
    428         <tr>
    429           <td class="paramkey"></td>
    430           <td></td>
    431           <td class="paramtype">size_t&#160;</td>
    432           <td class="paramname"><em>basename_len</em>&#160;</td>
    433         </tr>
    434         <tr>
    435           <td></td>
    436           <td>)</td>
    437           <td></td><td></td>
    438         </tr>
    439       </table>
    440 </div><div class="memdoc">
    441 
    442 <p>Sets the basename to be used by a verifier. </p>
    443 <p>This API allows setting a zero length base name.</p>
    444 <dl class="section warning"><dt>Warning</dt><dd>Not all members in the Intel(R) EPID 1.1 ecosystem may support zero length basenames. They may interpret a zero length basename as random base.</dd></dl>
    445 <dl class="params"><dt>Parameters</dt><dd>
    446   <table class="params">
    447     <tr><td class="paramdir">[in,out]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    448     <tr><td class="paramdir">[in]</td><td class="paramname">basename</td><td>The basename. Pass NULL for random base. </td></tr>
    449     <tr><td class="paramdir">[in]</td><td class="paramname">basename_len</td><td>Number of bytes in basename buffer. Must be 0 if basename is NULL.</td></tr>
    450   </table>
    451   </dd>
    452 </dl>
    453 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    454 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd></dl>
    455 
    456 </div>
    457 </div>
    458 <a id="ga809c777908b2f9d029062d9424cb5f65"></a>
    459 <h2 class="memtitle"><span class="permalink"><a href="#ga809c777908b2f9d029062d9424cb5f65">&#9670;&nbsp;</a></span>Epid11VerifierSetGroupRl()</h2>
    460 
    461 <div class="memitem">
    462 <div class="memproto">
    463       <table class="memname">
    464         <tr>
    465           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifierSetGroupRl </td>
    466           <td>(</td>
    467           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *&#160;</td>
    468           <td class="paramname"><em>ctx</em>, </td>
    469         </tr>
    470         <tr>
    471           <td class="paramkey"></td>
    472           <td></td>
    473           <td class="paramtype"><a class="el" href="struct_epid11_group_rl.html">Epid11GroupRl</a> const *&#160;</td>
    474           <td class="paramname"><em>grp_rl</em>, </td>
    475         </tr>
    476         <tr>
    477           <td class="paramkey"></td>
    478           <td></td>
    479           <td class="paramtype">size_t&#160;</td>
    480           <td class="paramname"><em>grp_rl_size</em>&#160;</td>
    481         </tr>
    482         <tr>
    483           <td></td>
    484           <td>)</td>
    485           <td></td><td></td>
    486         </tr>
    487       </table>
    488 </div><div class="memdoc">
    489 
    490 <p>Sets the Intel(R) EPID 1.1 group based revocation list. </p>
    491 <p>The caller is responsible to for ensuring the revocation list is authorized, e.g signed by the issuer. The caller is also responsible checking the version of the revocation list. The call will fail if trying to set an older version of the revocation list than was last set.</p>
    492 <p>This API supports Intel(R) EPID 1.1 verification.</p>
    493 <dl class="section attention"><dt>Attention</dt><dd>The memory pointed to by grp_rl will be accessed directly by the verifier until a new list is set or the verifier is destroyed. Do not modify the contents of this memory. The behavior of subsequent operations that rely on the revocation list will be undefined if the memory is modified.</dd>
    494 <dd>
    495 It is the responsibility of the caller to free the memory pointed to by grp_rl after the verifier is no longer using it.</dd></dl>
    496 <dl class="params"><dt>Parameters</dt><dd>
    497   <table class="params">
    498     <tr><td class="paramdir">[in,out]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    499     <tr><td class="paramdir">[in]</td><td class="paramname">grp_rl</td><td>The group based revocation list. </td></tr>
    500     <tr><td class="paramdir">[in]</td><td class="paramname">grp_rl_size</td><td>The size of the group based revocation list in bytes.</td></tr>
    501   </table>
    502   </dd>
    503 </dl>
    504 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    505 <dl class="section note"><dt>Note</dt><dd>If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the group based revocation list pointed to by the verifier is undefined.</dd></dl>
    506 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    507 <dd>
    508 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    509 
    510 </div>
    511 </div>
    512 <a id="gaffbe6ac2bc7236ad65126a17ebdceb14"></a>
    513 <h2 class="memtitle"><span class="permalink"><a href="#gaffbe6ac2bc7236ad65126a17ebdceb14">&#9670;&nbsp;</a></span>Epid11VerifierSetPrivRl()</h2>
    514 
    515 <div class="memitem">
    516 <div class="memproto">
    517       <table class="memname">
    518         <tr>
    519           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifierSetPrivRl </td>
    520           <td>(</td>
    521           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *&#160;</td>
    522           <td class="paramname"><em>ctx</em>, </td>
    523         </tr>
    524         <tr>
    525           <td class="paramkey"></td>
    526           <td></td>
    527           <td class="paramtype"><a class="el" href="struct_epid11_priv_rl.html">Epid11PrivRl</a> const *&#160;</td>
    528           <td class="paramname"><em>priv_rl</em>, </td>
    529         </tr>
    530         <tr>
    531           <td class="paramkey"></td>
    532           <td></td>
    533           <td class="paramtype">size_t&#160;</td>
    534           <td class="paramname"><em>priv_rl_size</em>&#160;</td>
    535         </tr>
    536         <tr>
    537           <td></td>
    538           <td>)</td>
    539           <td></td><td></td>
    540         </tr>
    541       </table>
    542 </div><div class="memdoc">
    543 
    544 <p>Sets the Intel(R) EPID 1.1 private key based revocation list. </p>
    545 <p>The caller is responsible to for ensuring the revocation list is authorized, e.g signed by the issuer. The caller is also responsible checking the version of the revocation list. The call will fail if trying to set an older version of the revocation list than was last set.</p>
    546 <p>This API supports Intel(R) EPID 1.1 verification.</p>
    547 <dl class="section attention"><dt>Attention</dt><dd>The memory pointed to by priv_rl will be accessed directly by the verifier until a new list is set or the verifier is destroyed. Do not modify the contents of this memory. The behavior of subsequent operations that rely on the revocation list will be undefined if the memory is modified.</dd>
    548 <dd>
    549 It is the responsibility of the caller to free the memory pointed to by priv_rl after the verifier is no longer using it.</dd></dl>
    550 <dl class="params"><dt>Parameters</dt><dd>
    551   <table class="params">
    552     <tr><td class="paramdir">[in,out]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    553     <tr><td class="paramdir">[in]</td><td class="paramname">priv_rl</td><td>The private key based revocation list. </td></tr>
    554     <tr><td class="paramdir">[in]</td><td class="paramname">priv_rl_size</td><td>The size of the private key based revocation list in bytes.</td></tr>
    555   </table>
    556   </dd>
    557 </dl>
    558 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    559 <dl class="section note"><dt>Note</dt><dd>If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the private key based revocation list pointed to by the verifier is undefined.</dd></dl>
    560 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    561 <dd>
    562 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    563 
    564 </div>
    565 </div>
    566 <a id="gaff5a014b0334be7e8583f0f99cb5e9b8"></a>
    567 <h2 class="memtitle"><span class="permalink"><a href="#gaff5a014b0334be7e8583f0f99cb5e9b8">&#9670;&nbsp;</a></span>Epid11VerifierSetSigRl()</h2>
    568 
    569 <div class="memitem">
    570 <div class="memproto">
    571       <table class="memname">
    572         <tr>
    573           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifierSetSigRl </td>
    574           <td>(</td>
    575           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> *&#160;</td>
    576           <td class="paramname"><em>ctx</em>, </td>
    577         </tr>
    578         <tr>
    579           <td class="paramkey"></td>
    580           <td></td>
    581           <td class="paramtype"><a class="el" href="struct_epid11_sig_rl.html">Epid11SigRl</a> const *&#160;</td>
    582           <td class="paramname"><em>sig_rl</em>, </td>
    583         </tr>
    584         <tr>
    585           <td class="paramkey"></td>
    586           <td></td>
    587           <td class="paramtype">size_t&#160;</td>
    588           <td class="paramname"><em>sig_rl_size</em>&#160;</td>
    589         </tr>
    590         <tr>
    591           <td></td>
    592           <td>)</td>
    593           <td></td><td></td>
    594         </tr>
    595       </table>
    596 </div><div class="memdoc">
    597 
    598 <p>Sets the Intel(R) EPID 1.1 signature based revocation list. </p>
    599 <p>The caller is responsible to for ensuring the revocation list is authorized, e.g signed by the issuer. The caller is also responsible checking the version of the revocation list. The call will fail if trying to set an older version of the revocation list than was last set.</p>
    600 <p>This API supports Intel(R) EPID 1.1 verification.</p>
    601 <dl class="section attention"><dt>Attention</dt><dd>The memory pointed to by sig_rl will be accessed directly by the verifier until a new list is set or the verifier is destroyed. Do not modify the contents of this memory. The behavior of subsequent operations that rely on the revocation list will be undefined if the memory is modified.</dd>
    602 <dd>
    603 It is the responsibility of the caller to free the memory pointed to by sig_rl after the verifier is no longer using it.</dd></dl>
    604 <dl class="params"><dt>Parameters</dt><dd>
    605   <table class="params">
    606     <tr><td class="paramdir">[in,out]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    607     <tr><td class="paramdir">[in]</td><td class="paramname">sig_rl</td><td>The signature based revocation list. </td></tr>
    608     <tr><td class="paramdir">[in]</td><td class="paramname">sig_rl_size</td><td>The size of the signature based revocation list in bytes.</td></tr>
    609   </table>
    610   </dd>
    611 </dl>
    612 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    613 <dl class="section note"><dt>Note</dt><dd>If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the signature based revocation list pointed to by the verifier is undefined.</dd></dl>
    614 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    615 <dd>
    616 SdkOverview_11Verifier </dd>
    617 <dd>
    618 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    619 
    620 </div>
    621 </div>
    622 <a id="ga241520cb925e5be89893a2037451cf1c"></a>
    623 <h2 class="memtitle"><span class="permalink"><a href="#ga241520cb925e5be89893a2037451cf1c">&#9670;&nbsp;</a></span>Epid11VerifierWritePrecomp()</h2>
    624 
    625 <div class="memitem">
    626 <div class="memproto">
    627       <table class="memname">
    628         <tr>
    629           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifierWritePrecomp </td>
    630           <td>(</td>
    631           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *&#160;</td>
    632           <td class="paramname"><em>ctx</em>, </td>
    633         </tr>
    634         <tr>
    635           <td class="paramkey"></td>
    636           <td></td>
    637           <td class="paramtype"><a class="el" href="struct_epid11_verifier_precomp.html">Epid11VerifierPrecomp</a> *&#160;</td>
    638           <td class="paramname"><em>precomp</em>&#160;</td>
    639         </tr>
    640         <tr>
    641           <td></td>
    642           <td>)</td>
    643           <td></td><td></td>
    644         </tr>
    645       </table>
    646 </div><div class="memdoc">
    647 
    648 <p>Serializes the pre-computed Intel(R) EPID 1.1 verifier settings. </p>
    649 <dl class="params"><dt>Parameters</dt><dd>
    650   <table class="params">
    651     <tr><td class="paramdir">[in]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    652     <tr><td class="paramdir">[out]</td><td class="paramname">precomp</td><td>The Serialized pre-computed verifier settings.</td></tr>
    653   </table>
    654   </dd>
    655 </dl>
    656 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    657 <dl class="section note"><dt>Note</dt><dd>If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the content of precomp is undefined.</dd></dl>
    658 <dl class="section see"><dt>See also</dt><dd><a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    659 
    660 </div>
    661 </div>
    662 <a id="gafe5ad6bde38ad0c3e0a9960975fd5216"></a>
    663 <h2 class="memtitle"><span class="permalink"><a href="#gafe5ad6bde38ad0c3e0a9960975fd5216">&#9670;&nbsp;</a></span>Epid11Verify()</h2>
    664 
    665 <div class="memitem">
    666 <div class="memproto">
    667       <table class="memname">
    668         <tr>
    669           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11Verify </td>
    670           <td>(</td>
    671           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *&#160;</td>
    672           <td class="paramname"><em>ctx</em>, </td>
    673         </tr>
    674         <tr>
    675           <td class="paramkey"></td>
    676           <td></td>
    677           <td class="paramtype"><a class="el" href="struct_epid11_signature.html">Epid11Signature</a> const *&#160;</td>
    678           <td class="paramname"><em>sig</em>, </td>
    679         </tr>
    680         <tr>
    681           <td class="paramkey"></td>
    682           <td></td>
    683           <td class="paramtype">size_t&#160;</td>
    684           <td class="paramname"><em>sig_len</em>, </td>
    685         </tr>
    686         <tr>
    687           <td class="paramkey"></td>
    688           <td></td>
    689           <td class="paramtype">void const *&#160;</td>
    690           <td class="paramname"><em>msg</em>, </td>
    691         </tr>
    692         <tr>
    693           <td class="paramkey"></td>
    694           <td></td>
    695           <td class="paramtype">size_t&#160;</td>
    696           <td class="paramname"><em>msg_len</em>&#160;</td>
    697         </tr>
    698         <tr>
    699           <td></td>
    700           <td>)</td>
    701           <td></td><td></td>
    702         </tr>
    703       </table>
    704 </div><div class="memdoc">
    705 
    706 <p>Verifies an Intel(R) EPID 1.1 signature and checks revocation status. </p>
    707 <dl class="params"><dt>Parameters</dt><dd>
    708   <table class="params">
    709     <tr><td class="paramdir">[in]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    710     <tr><td class="paramdir">[in]</td><td class="paramname">sig</td><td>The signature. </td></tr>
    711     <tr><td class="paramdir">[in]</td><td class="paramname">sig_len</td><td>The size of sig in bytes. </td></tr>
    712     <tr><td class="paramdir">[in]</td><td class="paramname">msg</td><td>The message that was signed. </td></tr>
    713     <tr><td class="paramdir">[in]</td><td class="paramname">msg_len</td><td>The size of msg in bytes.</td></tr>
    714   </table>
    715   </dd>
    716 </dl>
    717 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    718 <dl class="retval"><dt>Return values</dt><dd>
    719   <table class="retval">
    720     <tr><td class="paramname"><a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360ab45ad60085d03c03ea30b40a0519897e" title="Signature is valid. ">kEpidSigValid</a></td><td>Signature validated successfully </td></tr>
    721     <tr><td class="paramname"><a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360aeedd19b8a1cbdecf963f90b4860e02b8" title="Signature is invalid. ">kEpidSigInvalid</a></td><td>Signature is invalid </td></tr>
    722     <tr><td class="paramname"><a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360aedd43fb4043bef3b515fc23f1d9a5fe5" title="Signature revoked in GroupRl. ">kEpidSigRevokedInGroupRl</a></td><td>Signature revoked in <a class="el" href="struct_group_rl.html" title="group revocation list ">GroupRl</a> </td></tr>
    723     <tr><td class="paramname"><a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a1dc7b7e6ff97c7ed9ff4191d76ebd6e1" title="Signature revoked in PrivRl. ">kEpidSigRevokedInPrivRl</a></td><td>Signature revoked in <a class="el" href="struct_priv_rl.html" title="private-key based revocation list. ">PrivRl</a> </td></tr>
    724     <tr><td class="paramname"><a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a43c658cbf0d156850d71ce3f8efd461c" title="Signature revoked in SigRl. ">kEpidSigRevokedInSigRl</a></td><td>Signature revoked in <a class="el" href="struct_sig_rl.html" title="signature based revocation list ">SigRl</a></td></tr>
    725   </table>
    726   </dd>
    727 </dl>
    728 <dl class="section note"><dt>Note</dt><dd>If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> or one of the values listed above the verify should de considered to have failed.</dd></dl>
    729 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    730 <dd>
    731 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    732 
    733 </div>
    734 </div>
    735 <a id="ga7b5d19277da043c2b79721975d7bd070"></a>
    736 <h2 class="memtitle"><span class="permalink"><a href="#ga7b5d19277da043c2b79721975d7bd070">&#9670;&nbsp;</a></span>Epid11VerifyBasicSig()</h2>
    737 
    738 <div class="memitem">
    739 <div class="memproto">
    740       <table class="memname">
    741         <tr>
    742           <td class="memname"><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360">EpidStatus</a> Epid11VerifyBasicSig </td>
    743           <td>(</td>
    744           <td class="paramtype"><a class="el" href="group___epid11_verifier_module.html#gabe6a864a06322205ae7536ffea34c702">Epid11VerifierCtx</a> const *&#160;</td>
    745           <td class="paramname"><em>ctx</em>, </td>
    746         </tr>
    747         <tr>
    748           <td class="paramkey"></td>
    749           <td></td>
    750           <td class="paramtype"><a class="el" href="struct_epid11_basic_signature.html">Epid11BasicSignature</a> const *&#160;</td>
    751           <td class="paramname"><em>sig</em>, </td>
    752         </tr>
    753         <tr>
    754           <td class="paramkey"></td>
    755           <td></td>
    756           <td class="paramtype">void const *&#160;</td>
    757           <td class="paramname"><em>msg</em>, </td>
    758         </tr>
    759         <tr>
    760           <td class="paramkey"></td>
    761           <td></td>
    762           <td class="paramtype">size_t&#160;</td>
    763           <td class="paramname"><em>msg_len</em>&#160;</td>
    764         </tr>
    765         <tr>
    766           <td></td>
    767           <td>)</td>
    768           <td></td><td></td>
    769         </tr>
    770       </table>
    771 </div><div class="memdoc">
    772 
    773 <p>Verifies an Intel(R) EPID 1.1 member signature without revocation checks. </p>
    774 <p>Used in constrained environments where, due to limited memory, it may not be possible to process through a large and potentially unbounded revocation list.</p>
    775 <dl class="params"><dt>Parameters</dt><dd>
    776   <table class="params">
    777     <tr><td class="paramdir">[in]</td><td class="paramname">ctx</td><td>The verifier context. </td></tr>
    778     <tr><td class="paramdir">[in]</td><td class="paramname">sig</td><td>The basic signature. </td></tr>
    779     <tr><td class="paramdir">[in]</td><td class="paramname">msg</td><td>The message that was signed. </td></tr>
    780     <tr><td class="paramdir">[in]</td><td class="paramname">msg_len</td><td>The size of msg in bytes.</td></tr>
    781   </table>
    782   </dd>
    783 </dl>
    784 <dl class="section return"><dt>Returns</dt><dd><a class="el" href="group___error_codes.html#gafdb27c77c2c4b32c807e326a8a0da360" title="Return status for SDK functions. ">EpidStatus</a></dd></dl>
    785 <dl class="section note"><dt>Note</dt><dd>This function should be used in conjunction with <a class="el" href="group___epid11_verifier_module.html#ga3a2e320d7de6156b2ce9d73e9cdce813" title="Verifies the non-revoked proof for a single Intel(R) EPID 1.1 signature based revocation list entry...">Epid11NrVerify()</a> and <a class="el" href="group___epid11_verifier_module.html#ga0b79c79d09e3551158e1c38c7c335929" title="Verifies an Intel(R) EPID 1.1 signature has not been revoked in the private key based revocation list...">Epid11CheckPrivRlEntry()</a>.</dd>
    786 <dd>
    787 If the result is not <a class="el" href="group___error_codes.html#ggafdb27c77c2c4b32c807e326a8a0da360a8a6861e14322ca9193498ffc955537f9" title="no error ">kEpidNoErr</a> the verify should be considered to have failed.</dd></dl>
    788 <dl class="section see"><dt>See also</dt><dd><a class="el" href="group___epid11_verifier_module.html#gac5a8f8d7624063ea428d81dbdbf61fa8" title="Creates a new Intel(R) EPID 1.1 verifier context. ">Epid11VerifierCreate</a> </dd>
    789 <dd>
    790 <a href="group___epid11_verifier_module.html#details"><b>Intel(R) EPID 1.1 support</b></a> </dd></dl>
    791 
    792 </div>
    793 </div>
    794 </div><!-- contents -->
    795 </div><!-- doc-content -->
    796 <!-- HTML footer for doxygen 1.8.10-->
    797 <!-- start footer part -->
    798 <div id="nav-path" class="navpath"><!-- id is needed for treeview function! -->
    799   <ul>
    800     <li class="footer">
    801       &copy; 2016-2017 Intel Corporation
    802     </li>
    803   </ul>
    804 </div>
    805 </body>
    806 </html>
    807