PyPI - dcap-qvl - Versions diffs - 0.1.2__cp38-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl → 0.3.2__cp38-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl - Mend

dcap-qvl 0.1.2__cp38-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl → 0.3.2__cp38-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of dcap-qvl might be problematic. Click here for more details.

Files changed (9) hide show

dcap_qvl/__init__.py +141 -4
dcap_qvl/__init__.pyi +355 -0
dcap_qvl/dcap_qvl.abi3.so +0 -0
dcap_qvl-0.3.2.dist-info/METADATA +389 -0
dcap_qvl-0.3.2.dist-info/RECORD +6 -0
{dcap_qvl-0.1.2.dist-info → dcap_qvl-0.3.2.dist-info}/WHEEL +1 -1
dcap_qvl-0.1.2.dist-info/METADATA +0 -75
dcap_qvl-0.1.2.dist-info/RECORD +0 -6
dcap_qvl-0.1.2.dist-info/licenses/LICENSE +0 -21

dcap_qvl/__init__.py CHANGED Viewed

@@ -1,5 +1,142 @@
-from .dcap_qvl import *
+"""
+DCAP Quote Verification Library
-__doc__ = dcap_qvl.__doc__
-if hasattr(dcap_qvl, "__all__"):
-    __all__ = dcap_qvl.__all__
+This package provides Python bindings for the DCAP (Data Center Attestation Primitives)
+quote verification library implemented in Rust.
+Main classes:
+- QuoteCollateralV3: Represents quote collateral data
+- VerifiedReport: Contains verification results
+Main functions:
+- verify: Verify a quote with collateral data
+- get_collateral: Get collateral from PCCS URL
+- get_collateral_from_pcs: Get collateral from Intel PCS
+- get_collateral_and_verify: Get collateral and verify quote
+"""
+import time
+import json
+from typing import Optional, Union
+try:
+    import requests
+except ImportError:
+    requests = None
+from .dcap_qvl import (
+    PyQuoteCollateralV3 as QuoteCollateralV3,
+    PyVerifiedReport as VerifiedReport,
+    PyQuote as Quote,
+    py_verify as verify,
+    parse_quote,
+    get_collateral_for_fmspc,
+)
+# Default Intel PCS URL
+PCS_URL = "https://api.trustedservices.intel.com"
+# Note: These functions are now implemented in Rust and imported above
+# The manual parsing logic has been replaced with proper Rust-based parsing
+def _make_pcs_request(url: str) -> bytes:
+    """Make HTTP request to PCS endpoint."""
+    if requests is None:
+        raise ImportError(
+            "requests library is required for collateral fetching. Install with: pip install requests")
+    try:
+        response = requests.get(url, timeout=30, verify=False)
+        response.raise_for_status()
+        return response.content
+    except requests.RequestException as e:
+        raise RuntimeError(f"Failed to fetch from {url}: {e}")
+async def get_collateral(pccs_url: str, raw_quote: bytes) -> QuoteCollateralV3:
+    """Get collateral from PCCS URL.
+    Args:
+        pccs_url: PCCS server URL
+        raw_quote: Raw quote bytes
+    Returns:
+        QuoteCollateralV3: Quote collateral data
+    Raises:
+        ValueError: If quote is invalid or FMSPC cannot be extracted
+        RuntimeError: If network request fails
+        ImportError: If requests library is not available
+    """
+    if not isinstance(raw_quote, (bytes, bytearray)):
+        raise TypeError("raw_quote must be bytes")
+    quote = Quote.parse(raw_quote)
+    fmspc = quote.fmspc()
+    is_sgx = quote.is_sgx()
+    ca = quote.ca()
+    return await get_collateral_for_fmspc(pccs_url, fmspc, ca, is_sgx)
+async def get_collateral_from_pcs(raw_quote: bytes) -> QuoteCollateralV3:
+    """Get collateral from Intel PCS.
+    Args:
+        raw_quote: Raw quote bytes
+    Returns:
+        QuoteCollateralV3: Quote collateral data
+    Raises:
+        ValueError: If quote is invalid or FMSPC cannot be extracted
+        RuntimeError: If network request fails
+        ImportError: If requests library is not available
+    """
+    return await get_collateral(PCS_URL, raw_quote)
+async def get_collateral_and_verify(raw_quote: bytes, pccs_url: Optional[str] = None) -> VerifiedReport:
+    """Get collateral and verify the quote.
+    Args:
+        raw_quote: Raw quote bytes
+        pccs_url: Optional PCCS URL (defaults to Intel PCS)
+    Returns:
+        VerifiedReport: Verification result
+    Raises:
+        ValueError: If quote is invalid or verification fails
+        RuntimeError: If network request fails
+        ImportError: If requests library is not available
+    """
+    # Use provided PCCS URL or default to Intel PCS
+    url = pccs_url.strip() if pccs_url else PCS_URL
+    if not url:
+        url = PCS_URL
+    # Get collateral
+    collateral = await get_collateral(url, raw_quote)
+    # Get current time
+    now_secs = int(time.time())
+    print("Collateral:", collateral.to_json())
+    # Verify quote
+    return verify(raw_quote, collateral, now_secs)
+__all__ = [
+    "QuoteCollateralV3",
+    "VerifiedReport",
+    "Quote",
+    "verify",
+    "get_collateral",
+    "get_collateral_from_pcs",
+    "get_collateral_and_verify",
+    "get_collateral_for_fmspc",
+]
+__version__ = "0.3.2"

dcap_qvl/__init__.pyi ADDED Viewed

@@ -0,0 +1,355 @@
+"""
+Type stubs for dcap_qvl Python bindings.
+This file provides type hints for the compiled Rust extension, enabling better
+IDE support, type checking with mypy, and improved developer experience.
+"""
+from typing import List
+__version__: str
+__all__: List[str]
+class QuoteCollateralV3:
+    """
+    Represents quote collateral data required for DCAP quote verification.
+    This class contains all the necessary certificate chains, CRLs, and
+    attestation information needed to verify an SGX or TDX quote.
+    """
+    def __init__(
+        self,
+        pck_crl_issuer_chain: str,
+        root_ca_crl: bytes,
+        pck_crl: bytes,
+        tcb_info_issuer_chain: str,
+        tcb_info: str,
+        tcb_info_signature: bytes,
+        qe_identity_issuer_chain: str,
+        qe_identity: str,
+        qe_identity_signature: bytes,
+    ) -> None:
+        """
+        Create a new QuoteCollateralV3 instance.
+        Args:
+            pck_crl_issuer_chain: PCK CRL issuer certificate chain (PEM format)
+            root_ca_crl: Root CA certificate revocation list
+            pck_crl: PCK certificate revocation list
+            tcb_info_issuer_chain: TCB info issuer certificate chain (PEM format)
+            tcb_info: TCB (Trusted Computing Base) information (JSON string)
+            tcb_info_signature: Signature for the TCB info
+            qe_identity_issuer_chain: QE identity issuer certificate chain (PEM format)
+            qe_identity: Quoting Enclave identity information (JSON string)
+            qe_identity_signature: Signature for the QE identity
+        """
+        ...
+    @property
+    def pck_crl_issuer_chain(self) -> str:
+        """PCK CRL issuer certificate chain in PEM format."""
+        ...
+    @property
+    def root_ca_crl(self) -> bytes:
+        """Root CA certificate revocation list."""
+        ...
+    @property
+    def pck_crl(self) -> bytes:
+        """PCK certificate revocation list."""
+        ...
+    @property
+    def tcb_info_issuer_chain(self) -> str:
+        """TCB info issuer certificate chain in PEM format."""
+        ...
+    @property
+    def tcb_info(self) -> str:
+        """TCB (Trusted Computing Base) information as JSON string."""
+        ...
+    @property
+    def tcb_info_signature(self) -> bytes:
+        """Signature for the TCB info."""
+        ...
+    @property
+    def qe_identity_issuer_chain(self) -> str:
+        """QE identity issuer certificate chain in PEM format."""
+        ...
+    @property
+    def qe_identity(self) -> str:
+        """Quoting Enclave identity information as JSON string."""
+        ...
+    @property
+    def qe_identity_signature(self) -> bytes:
+        """Signature for the QE identity."""
+        ...
+    def to_json(self) -> str:
+        """
+        Serialize the collateral to a JSON string.
+        Returns:
+            JSON string representation of the collateral data
+        Raises:
+            ValueError: If serialization fails
+        """
+        ...
+    @staticmethod
+    def from_json(json_str: str) -> "QuoteCollateralV3":
+        """
+        Create a QuoteCollateralV3 instance from a JSON string.
+        Args:
+            json_str: JSON string containing collateral data
+        Returns:
+            New QuoteCollateralV3 instance
+        Raises:
+            ValueError: If JSON parsing fails or data is invalid
+        """
+        ...
+class VerifiedReport:
+    """
+    Contains the results of DCAP quote verification.
+    This class holds the verification status and any security advisories
+    that were found during the quote verification process.
+    """
+    @property
+    def status(self) -> str:
+        """
+        Verification status string.
+        Common values include:
+        - "OK": Verification successful, no issues
+        - "SW_HARDENING_NEEDED": Software hardening recommended
+        - "CONFIGURATION_NEEDED": Platform configuration required
+        - "OUT_OF_DATE": TCB is out of date
+        - "REVOKED": Certificate or key has been revoked
+        """
+        ...
+    @property
+    def advisory_ids(self) -> List[str]:
+        """
+        List of security advisory IDs that apply to this quote.
+        These are Intel security advisory identifiers (e.g., "INTEL-SA-00334")
+        that indicate known security issues affecting the attested platform.
+        """
+        ...
+    def to_json(self) -> str:
+        """
+        Serialize the verification report to a JSON string.
+        Returns:
+            JSON string representation of the verification report
+        Raises:
+            ValueError: If serialization fails
+        """
+        ...
+class Quote:
+    """
+    Represents a parsed SGX or TDX quote.
+    This class provides access to quote metadata and identifiers
+    without requiring collateral data for verification.
+    """
+    @staticmethod
+    def parse(raw_quote: bytes) -> "Quote":
+        """
+        Parse a raw quote from bytes.
+        Args:
+            raw_quote: Raw quote data as bytes (SGX or TDX format)
+        Returns:
+            Quote instance with parsed quote data
+        Raises:
+            ValueError: If quote parsing fails due to invalid format or corrupted data
+        Example:
+            >>> import dcap_qvl
+            >>>
+            >>> with open("quote.bin", "rb") as f:
+            ...     quote_data = f.read()
+            >>>
+            >>> quote = dcap_qvl.Quote.parse(quote_data)
+            >>> print(f"Quote type: {quote.quote_type()}")
+            >>> print(f"FMSPC: {quote.fmspc()}")
+        """
+        ...
+    def fmspc(self) -> str:
+        """
+        Extract the FMSPC (Family-Model-Stepping-Platform-CustomSKU) identifier.
+        The FMSPC is a 6-byte identifier that uniquely identifies the
+        platform's TCB level and is used for collateral retrieval.
+        Returns:
+            FMSPC as uppercase hexadecimal string (12 characters)
+        Raises:
+            ValueError: If FMSPC cannot be extracted from the quote
+        Example:
+            >>> quote = dcap_qvl.Quote.parse(quote_data)
+            >>> fmspc = quote.fmspc()
+            >>> print(f"FMSPC: {fmspc}")  # e.g., "00606A000000"
+        """
+        ...
+    def ca(self) -> str:
+        """
+        Extract the CA (Certificate Authority) identifier.
+        The CA identifier indicates which certificate authority
+        should be used for quote verification.
+        Returns:
+            CA identifier as string
+        Raises:
+            ValueError: If CA identifier cannot be extracted from the quote
+        """
+        ...
+    def is_tdx(self) -> bool:
+        """
+        Check if this is a TDX (Trust Domain Extensions) quote.
+        Returns:
+            True if the quote is TDX format, False if SGX format
+        Example:
+            >>> quote = dcap_qvl.Quote.parse(quote_data)
+            >>> if quote.is_tdx():
+            ...     print("This is a TDX quote")
+            ... else:
+            ...     print("This is an SGX quote")
+        """
+        ...
+    def is_sgx(self) -> bool:
+        """
+        Check if this is an SGX quote.
+        Returns:
+            True if the quote is SGX format, False if TDX format
+        Example:
+            >>> quote = dcap_qvl.Quote.parse(quote_data)
+            >>> if quote.is_sgx():
+            ...     print("This is an SGX quote")
+            ... else:
+            ...     print("This is a TDX quote")
+        """
+        ...
+    def quote_type(self) -> str:
+        """
+        Get the quote type as a string.
+        Returns:
+            "TDX" for TDX quotes, "SGX" for SGX quotes
+        Example:
+            >>> quote = dcap_qvl.Quote.parse(quote_data)
+            >>> print(f"Quote type: {quote.quote_type()}")
+        """
+        ...
+# Synchronous functions
+def verify(
+    raw_quote: bytes,
+    collateral: QuoteCollateralV3,
+    now_secs: int
+) -> VerifiedReport:
+    """
+    Verify an SGX or TDX quote with the provided collateral data.
+    This function performs cryptographic verification of the quote against
+    the provided collateral information, checking certificates, signatures,
+    and revocation status.
+    Args:
+        raw_quote: Raw quote data as bytes (SGX or TDX format)
+        collateral: Quote collateral containing certificates and attestation data
+        now_secs: Current timestamp in seconds since Unix epoch for time-based checks
+    Returns:
+        VerifiedReport containing verification status and advisory information
+    Raises:
+        ValueError: If verification fails due to invalid data, expired certificates,
+                   revoked keys, or other verification errors
+    Example:
+        >>> import dcap_qvl
+        >>> import time
+        >>>
+        >>> # Load quote and collateral data
+        >>> with open("quote.bin", "rb") as f:
+        ...     quote_data = f.read()
+        >>>
+        >>> collateral = dcap_qvl.QuoteCollateralV3.from_json(collateral_json)
+        >>> result = dcap_qvl.verify(quote_data, collateral, int(time.time()))
+        >>> print(f"Status: {result.status}")
+    """
+    ...
+def parse_quote(raw_quote: bytes) -> Quote:
+    """
+    Parse a raw quote from bytes (convenience function).
+    This is a convenience function that calls Quote.parse() directly.
+    Args:
+        raw_quote: Raw quote data as bytes (SGX or TDX format)
+    Returns:
+        Quote instance with parsed quote data
+    Raises:
+        ValueError: If quote parsing fails due to invalid format or corrupted data
+    Example:
+        >>> import dcap_qvl
+        >>>
+        >>> with open("quote.bin", "rb") as f:
+        ...     quote_data = f.read()
+        >>>
+        >>> quote = dcap_qvl.parse_quote(quote_data)
+        >>> print(f"Quote type: {quote.quote_type()}")
+        >>> print(f"FMSPC: {quote.fmspc()}")
+    """
+    ...
+async def get_collateral_for_fmspc(pccs_url: str, fmspc: str, ca: str, is_sgx: bool) -> QuoteCollateralV3:
+    """Get collateral for a specific FMSPC from PCCS URL."""
+    ...

dcap_qvl/dcap_qvl.abi3.so CHANGED Viewed

Binary file

dcap_qvl-0.3.2.dist-info/METADATA ADDED Viewed

@@ -0,0 +1,389 @@
+Metadata-Version: 2.4
+Name: dcap-qvl
+Version: 0.3.2
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.8
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Rust
+Classifier: Topic :: Security :: Cryptography
+Classifier: Topic :: Software Development :: Libraries
+Summary: Python bindings for DCAP (Data Center Attestation Primitives) quote verification library
+Keywords: sgx,tdx,dcap,attestation,verification,cryptography
+Author-email: Kevin Wang <wy721@qq.com>
+License: MIT
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown; charset=UTF-8; variant=GFM
+Project-URL: Homepage, https://github.com/Phala-Network/dcap-qvl
+Project-URL: Repository, https://github.com/Phala-Network/dcap-qvl
+Project-URL: Issues, https://github.com/Phala-Network/dcap-qvl/issues
+# Python Bindings for DCAP-QVL
+This package provides Python bindings for the DCAP (Data Center Attestation Primitives) quote verification library implemented in Rust.
+## Quick Start
+```bash
+# Install from PyPI
+pip install dcap-qvl
+# Basic usage
+python -c "
+import dcap_qvl
+print('DCAP-QVL Python bindings successfully installed!')
+print(f'Available functions: {dcap_qvl.__all__}')
+"
+```
+## Features
+- Verify SGX and TDX quotes
+- Handle quote collateral data
+- Parse verification results
+- Pure Rust implementation with Python bindings
+- Cross-platform compatibility (Linux, macOS, Windows)
+- Asynchronous collateral fetching from PCCS/PCS with async/await support
+- Compatible with Python 3.8+
+## Installation
+### From PyPI (recommended)
+```bash
+pip install dcap-qvl
+```
+### Using uv
+```bash
+uv add dcap-qvl
+```
+## Usage
+### Basic Quote Verification
+```python
+import dcap_qvl
+import json
+import time
+# Load quote data (binary)
+with open("path/to/quote", "rb") as f:
+    quote_data = f.read()
+# Load collateral data (JSON)
+with open("path/to/collateral.json", "r") as f:
+    collateral_json = json.load(f)
+# Create collateral object
+collateral = dcap_qvl.QuoteCollateralV3.from_json(json.dumps(collateral_json))
+# Verify the quote
+now = int(time.time())
+try:
+    result = dcap_qvl.verify(quote_data, collateral, now)
+    print(f"Verification successful! Status: {result.status}")
+    print(f"Advisory IDs: {result.advisory_ids}")
+except ValueError as e:
+    print(f"Verification failed: {e}")
+```
+### Working with Collateral Data
+```python
+# Create collateral manually
+collateral = dcap_qvl.QuoteCollateralV3(
+    pck_crl_issuer_chain="...",
+    root_ca_crl=b"...",  # bytes
+    pck_crl=b"...",      # bytes
+    tcb_info_issuer_chain="...",
+    tcb_info="...",      # JSON string
+    tcb_info_signature=b"...",  # bytes
+    qe_identity_issuer_chain="...",
+    qe_identity="...",   # JSON string
+    qe_identity_signature=b"...",  # bytes
+)
+# Serialize to JSON
+json_str = collateral.to_json()
+# Deserialize from JSON
+collateral = dcap_qvl.QuoteCollateralV3.from_json(json_str)
+```
+## API Reference
+### Async Collateral Functions
+All collateral functions are asynchronous and must be awaited. They use the Rust async runtime for optimal performance.
+#### `async get_collateral_for_fmspc(pccs_url: str, fmspc: str, ca: str, is_sgx: bool) -> QuoteCollateralV3`
+Get collateral for a specific FMSPC directly from PCCS URL (Rust async export).
+**Parameters:**
+- `pccs_url`: PCCS URL (e.g., "https://api.trustedservices.intel.com")
+- `fmspc`: FMSPC value as hex string (e.g., "B0C06F000000")
+- `ca`: Certificate Authority ("processor" or "platform")
+- `is_sgx`: True for SGX quotes, False for TDX quotes
+**Returns:**
+- `QuoteCollateralV3`: Quote collateral data
+**Raises:**
+- `ValueError`: If FMSPC is invalid or collateral cannot be retrieved
+- `RuntimeError`: If network request fails
+**Example:**
+```python
+import asyncio
+import dcap_qvl
+async def main():
+    collateral = await dcap_qvl.get_collateral_for_fmspc(
+        pccs_url="https://api.trustedservices.intel.com",
+        fmspc="B0C06F000000",
+        ca="processor",
+        is_sgx=True
+    )
+    print(f"Got collateral: {len(collateral.tcb_info)} chars")
+asyncio.run(main())
+```
+#### `async get_collateral(pccs_url: str, raw_quote: bytes) -> QuoteCollateralV3`
+Get collateral from a custom PCCS URL by parsing the quote.
+**Parameters:**
+- `pccs_url`: PCCS URL (e.g., "https://api.trustedservices.intel.com")
+- `raw_quote`: Raw quote data as bytes
+**Returns:**
+- `QuoteCollateralV3`: Quote collateral data
+**Raises:**
+- `ValueError`: If quote is invalid or FMSPC cannot be extracted
+- `RuntimeError`: If network request fails
+**Example:**
+```python
+import asyncio
+import dcap_qvl
+async def main():
+    pccs_url = "https://api.trustedservices.intel.com"
+    quote_data = open("quote.bin", "rb").read()
+    collateral = await dcap_qvl.get_collateral(pccs_url, quote_data)
+    print(f"Got collateral: {len(collateral.tcb_info)} chars")
+asyncio.run(main())
+```
+#### `async get_collateral_from_pcs(raw_quote: bytes) -> QuoteCollateralV3`
+Get collateral from Intel's PCS (default).
+**Parameters:**
+- `raw_quote`: Raw quote data as bytes
+**Returns:**
+- `QuoteCollateralV3`: Quote collateral data
+**Raises:**
+- `ValueError`: If quote is invalid or FMSPC cannot be extracted
+- `RuntimeError`: If network request fails
+**Example:**
+```python
+import asyncio
+import dcap_qvl
+async def main():
+    quote_data = open("quote.bin", "rb").read()
+    collateral = await dcap_qvl.get_collateral_from_pcs(quote_data)
+    print(f"Got collateral from Intel PCS")
+asyncio.run(main())
+```
+#### `async get_collateral_and_verify(raw_quote: bytes, pccs_url: Optional[str] = None) -> VerifiedReport`
+Get collateral and verify quote in one step.
+**Parameters:**
+- `raw_quote`: Raw quote data as bytes
+- `pccs_url`: Optional PCCS URL (uses Intel PCS if None)
+**Returns:**
+- `VerifiedReport`: Verification results
+**Raises:**
+- `ValueError`: If quote is invalid or verification fails
+- `RuntimeError`: If network request fails
+**Example:**
+```python
+import asyncio
+import dcap_qvl
+async def main():
+    quote_data = open("quote.bin", "rb").read()
+    result = await dcap_qvl.get_collateral_and_verify(quote_data)
+    print(f"Status: {result.status}")
+    print(f"Advisory IDs: {result.advisory_ids}")
+asyncio.run(main())
+```
+### Classes
+#### `QuoteCollateralV3`
+Represents quote collateral data required for verification.
+**Constructor:**
+```python
+QuoteCollateralV3(
+    pck_crl_issuer_chain: str,
+    root_ca_crl: bytes,
+    pck_crl: bytes,
+    tcb_info_issuer_chain: str,
+    tcb_info: str,
+    tcb_info_signature: bytes,
+    qe_identity_issuer_chain: str,
+    qe_identity: str,
+    qe_identity_signature: bytes,
+)
+```
+**Methods:**
+- `to_json() -> str`: Serialize to JSON string
+- `from_json(json_str: str) -> QuoteCollateralV3`: Create from JSON string (static method)
+**Properties:**
+- `pck_crl_issuer_chain: str`
+- `root_ca_crl: bytes`
+- `pck_crl: bytes`
+- `tcb_info_issuer_chain: str`
+- `tcb_info: str`
+- `tcb_info_signature: bytes`
+- `qe_identity_issuer_chain: str`
+- `qe_identity: str`
+- `qe_identity_signature: bytes`
+#### `VerifiedReport`
+Contains the results of quote verification.
+**Properties:**
+- `status: str`: Verification status
+- `advisory_ids: List[str]`: List of advisory IDs
+**Methods:**
+- `to_json() -> str`: Serialize to JSON string
+### Functions
+#### `verify(raw_quote: bytes, collateral: QuoteCollateralV3, now_secs: int) -> VerifiedReport`
+Verify a quote with the provided collateral data.
+**Parameters:**
+- `raw_quote`: Raw quote data as bytes
+- `collateral`: Quote collateral data
+- `now_secs`: Current timestamp in seconds since Unix epoch
+**Returns:**
+- `VerifiedReport`: Verification results
+**Raises:**
+- `ValueError`: If verification fails
+## Development
+### Building from Source
+If you want to build from source or contribute to development:
+```bash
+# Clone the repository
+git clone https://github.com/Phala-Network/dcap-qvl.git
+cd dcap-qvl/python-bindings
+# Install development dependencies (including maturin)
+uv sync
+# Build and install the Python extension in development mode
+uv run maturin develop --features python
+# Run tests
+uv run python -m pytest tests/test_python_bindings.py
+```
+**Note:** maturin is only required for building from source. Regular users installing from PyPI don't need maturin.
+### Running Examples
+After installing the package, you can run the examples:
+```bash
+# Download the examples from the repository
+git clone https://github.com/Phala-Network/dcap-qvl.git
+cd dcap-qvl/python-bindings
+# Basic functionality test
+python examples/basic_test.py
+# Full example (requires sample data files)
+python examples/python_example.py
+```
+Or if you're using uv for development:
+```bash
+# Basic functionality test
+uv run python examples/basic_test.py
+# Full example (requires sample data files)
+uv run python examples/python_example.py
+```
+### Testing Across Python Versions
+The project includes comprehensive testing across all supported Python versions:
+```bash
+# Quick test across all Python versions
+make test_python_versions
+# Test current Python version only
+make test_python
+```
+See [PYTHON_TESTING.md](PYTHON_TESTING.md) for detailed information about Python version compatibility testing.
+## Requirements
+### For regular usage (installing from PyPI):
+- Python 3.8+
+### For development (building from source):
+- Python 3.8+
+- Rust toolchain (rustc, cargo)
+- maturin (automatically installed with `uv sync`)
+## License
+MIT License - see [LICENSE](LICENSE) for details.
+## Contributing
+Contributions are welcome! Please feel free to submit a Pull Request.

dcap_qvl-0.3.2.dist-info/RECORD ADDED Viewed

@@ -0,0 +1,6 @@
+dcap_qvl-0.3.2.dist-info/METADATA,sha256=3N6XPbmZkdJvADf6A4b-V9uPiyFCqiJTZs1Ay82i8us,9879
+dcap_qvl-0.3.2.dist-info/WHEEL,sha256=vJwryDy_XN4_OrKBO4Z-Wqfyse3zdCl4cNM2nSll1k0,129
+dcap_qvl/__init__.py,sha256=3c5mhP5xFUou8kcx8ykjMLA34RMPXiD5Q2ATiEsy4_w,3910
+dcap_qvl/__init__.pyi,sha256=eXZBGDagPBOg2T34FFd1GA_xIj-5GxaQUkNWaUHyvMc,9960
+dcap_qvl/dcap_qvl.abi3.so,sha256=btcfbCNk-wdPmegwsEySjY0w9FmyA5BGWYrQliUDdzo,5436064
+dcap_qvl-0.3.2.dist-info/RECORD,,

{dcap_qvl-0.1.2.dist-info → dcap_qvl-0.3.2.dist-info}/WHEEL RENAMED Viewed

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: maturin (1.8.2)
+Generator: maturin (1.9.2)
 Root-Is-Purelib: false
 Tag: cp38-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64

dcap_qvl-0.1.2.dist-info/METADATA DELETED Viewed

@@ -1,75 +0,0 @@
-Metadata-Version: 2.4
-Name: dcap-qvl
-Version: 0.1.2
-Requires-Dist: maturin>=1.8.2
-Requires-Dist: twine>=6.1.0
-License-File: LICENSE
-Summary: Add your description here
-Author: Kevin Wang <wy721@qq.com>
-Author-email: Kevin Wang <wy721@qq.com>
-License: MIT
-Requires-Python: >=3.10, <4
-Description-Content-Type: text/markdown; charset=UTF-8; variant=GFM
-<!-- cargo-rdme start -->
-# dcap-qvl
-This crate implements the quote verification logic for DCAP (Data Center Attestation Primitives) in pure Rust. It supports both SGX (Software Guard Extensions) and TDX (Trust Domain Extensions) quotes.
-# Features
-- Verify SGX and TDX quotes
-- Get collateral from PCCS
-- Extract information from quotes
-# Usage
-Add the following dependency to your `Cargo.toml` file to use this crate:
-```toml
-[dependencies]
-dcap-qvl = "0.1.0"
-```
-# Examples
-## Get Collateral from PCCS_URL and Verify Quote
-To get collateral from a PCCS_URL and verify a quote, you can use the following example code:
-```rust
-use dcap_qvl::collateral::get_collateral;
-use dcap_qvl::verify::verify;
-#[tokio::main]
-async fn main() {
-    // Get PCCS_URL from environment variable. The URL is like "https://localhost:8081/sgx/certification/v4/".
-    let pccs_url = std::env::var("PCCS_URL").expect("PCCS_URL is not set");
-    let quote = std::fs::read("tdx_quote").expect("tdx_quote is not found");
-    let collateral = get_collateral(&pccs_url, &quote, std::time::Duration::from_secs(10)).await.expect("failed to get collateral");
-    let now = std::time::SystemTime::now().duration_since(std::time::UNIX_EPOCH).unwrap().as_secs();
-    let tcb = verify(&quote, &collateral, now).expect("failed to verify quote");
-    println!("{:?}", tcb);
-}
-```
-## Get Collateral from Intel PCS and Verify Quote
-```rust
-use dcap_qvl::collateral::get_collateral_from_pcs;
-use dcap_qvl::verify::verify;
-#[tokio::main]
-async fn main() {
-    let quote = std::fs::read("tdx_quote").expect("tdx_quote is not found");
-    let collateral = get_collateral_from_pcs(&quote, std::time::Duration::from_secs(10)).await.expect("failed to get collateral");
-    let now = std::time::SystemTime::now().duration_since(std::time::UNIX_EPOCH).unwrap().as_secs();
-    let tcb = verify(&quote, &collateral, now).expect("failed to verify quote");
-    println!("{:?}", tcb);
-}
-```
-<!-- cargo-rdme end -->
-# License
-This crate is licensed under the MIT license. See the LICENSE file for details.

dcap_qvl-0.1.2.dist-info/RECORD DELETED Viewed

@@ -1,6 +0,0 @@
-dcap_qvl-0.1.2.dist-info/METADATA,sha256=8264XXvSE1TjkaVJRT-f4haIjoXqj8XdwlaN_a981YQ,2422
-dcap_qvl-0.1.2.dist-info/WHEEL,sha256=enHAT78HPHhu3XKDSOZi_EBRo8KIHOWyiLnoj9YUFq8,129
-dcap_qvl-0.1.2.dist-info/licenses/LICENSE,sha256=070OEM_OefwwbasTPBxtOyVDy8cUurlbqN-rehf9meo,1070
-dcap_qvl/__init__.py,sha256=RMQOVBmpT6U8PaT8rRlDneVa0kLXFJ-nMTVqBaDVatw,115
-dcap_qvl/dcap_qvl.abi3.so,sha256=MVIV2ptafdYvnmIp0jMmg1QPLU14ZHv1UVFhgNtmXJo,6588896
-dcap_qvl-0.1.2.dist-info/RECORD,,

dcap_qvl-0.1.2.dist-info/licenses/LICENSE DELETED Viewed

@@ -1,21 +0,0 @@
-MIT License
-Copyright (c) 2024 Phala Network
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.