38-14 Vol. 3D
ENCLAVE ACCESS CONTROL AND DATA STRUCTURES
38.15 REPORT
(REPORT)
The REPORT structure is the output of the EREPORT instruction, and must be 512-Byte aligned.
Table 38-20. Layout of EINIT Token (EINITTOKEN)
Field
OFFSET (Bytes) Size (Bytes) MACed
Description
Valid
0
4
Y
Bit 0: 1: Valid; 0: Invalid.
All other bits reserved.
RESERVED
4
44
Y
Must be zero.
ATTRIBUTES
48
16
Y
ATTRIBUTES of the Enclave.
MRENCLAVE
64
32
Y
MRENCLAVE of the Enclave.
RESERVED
96
32
Y
Reserved.
MRSIGNER
128
32
Y
MRSIGNER of the Enclave.
RESERVED
160
32
Y
Reserved.
CPUSVNLE
192
16
N
Launch Enclave’s CPUSVN.
ISVPRODIDLE
208
02
N
Launch Enclave’s ISVPRODID.
ISVSVNLE
210
02
N
Launch Enclave’s ISVSVN.
RESERVED
212
24
N
Reserved.
MASKEDMISCSEL
ECTLE
236
4
Launch Enclave’s MASKEDMISCSELECT: set by the LE to the resolved
MISCSELECT value, used by EGETKEY (after applying KEYREQUEST’s
masking).
MASKEDATTRIBU
TESLE
240
16
N
Launch Enclave’s MASKEDATTRIBUTES: This should be set to the LE’s
ATTRIBUTES masked with ATTRIBUTEMASK of the LE’s KEYREQUEST.
KEYID
256
32
N
Value for key wear-out protection.
MAC
288
16
N
Message Authentication Code on EINITTOKEN using EINITOKENKEY.
Table 38-21. Layout of REPORT
Field
OFFSET (Bytes) Size (Bytes)
Description
CPUSVN
0
16
The security version number of the processor.
MISCSELECT
16
4
Bit vector specifying which extended features are saved to the MISC region of the
SSA frame when an AEX occurs.
RESERVED
20
28
Must be zero.
ATTRIBUTES
48
16
ATTRIBUTES of the Enclave. See Section 38.7.1.
MRENCLAVE
64
32
The value of SECS.MRENCLAVE.
RESERVED
96
32
Reserved.
MRSIGNER
128
32
The value of SECS.MRSIGNER.
RESERVED
160
96
Zero.
ISVPRODID
256
02
Product ID of enclave.
ISVSVN
258
02
Security version number (SVN) of the enclave.
RESERVED
260
60
Zero.
REPORTDATA
320
64
Data provided by the user and protected by the REPORT's MAC, see Section
KEYID
384
32
Value for key wear-out protection.
MAC
416
16
Message Authentication Code on the report using report key.