runtime: Enclave quote status related cleanups/improvements

[Yawning]

• runtime: Change OASIS_STRICT_AVR_VERIFY to OASIS_UNSAFE_LAX_AVR_VERFIY
• Add acceptable enclave quote statuses to SGX constraints (Add acceptable enclave quote statuses to SGX constraints #4055)

Yes I had to move the Constraints field definition to the node package, because it doesn't belong in our IAS support code, and there will be an import loop otherwise.

[codecov]

Codecov Report

Merging #4396 (4556f9c) into master (50dce38) will decrease coverage by 0.38%.
The diff coverage is 60.00%.

@@            Coverage Diff             @@
##           master    #4396      +/-   ##
==========================================
- Coverage   69.40%   69.01%   -0.39%     
==========================================
  Files         413      413              
  Lines       46983    46993      +10     
==========================================
- Hits        32610    32434     -176     
- Misses      10406    10588     +182     
- Partials     3967     3971       +4     

Impacted Files	Coverage Δ
go/common/sgx/common.go	66.01% <ø> (ø)
go/common/node/node.go	71.71% <45.45%> (-1.69%)	⬇️
go/oasis-node/cmd/ias/auth.go	68.96% <100.00%> (-6.90%)	⬇️
go/registry/api/api.go	59.82% <100.00%> (ø)
go/registry/tests/tester.go	92.65% <100.00%> (ø)
go/ias/http/http.go	20.33% <0.00%> (-44.07%)	⬇️
go/keymanager/api/policy_sgx.go	33.33% <0.00%> (-13.34%)	⬇️
go/storage/api/context.go	87.87% <0.00%> (-12.13%)	⬇️
go/runtime/host/sandbox/sandbox.go	71.06% <0.00%> (-9.90%)	⬇️
... and 39 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 50dce38...4556f9c. Read the comment docs.