Here explains why we need auditors for MesaTEE enclaves. And this directory contains three demo auditors for testing purposes. Each auditor has his/her own asymmetric key pair and will sign MesaTEE enclaves only if the enclaves can pass the audting process:
openssl dgst -sha256 -sign private.pem -out sign.sha256 enclave_info.txt
The enclave_info.txt above contains the MRSIGNER (enclave signer's identity) and MRENCLAVE (enclave's measurement) value pairs of all MesaTEE enclaves. A sample entry looks like:
kms
mrsigner->value:
0x83 0xd7 0x19 0xe7 0x7d 0xea 0xca 0x14 0x70 0xf6 0xba 0xf6 0x2a 0x4d 0x77 0x43
0x03 0xc8 0x99 0xdb 0x69 0x02 0x0f 0x9c 0x70 0xee 0x1d 0xfc 0x08 0xc7 0xce 0x9e
metadata->enclave_css.body.enclave_hash.m:
0xe3 0x2d 0x40 0xa9 0xf0 0x29 0xb3 0xba 0xa1 0xf7 0xf9 0x15 0xcc 0x2b 0x35 0xa4
0xb6 0xe6 0xe1 0x67 0x67 0xbb 0x8b 0x53 0x94 0x1e 0x59 0x63 0xe2 0x1e 0x35 0xb5