I'm implementing a crate which will allow clients to verify attestation documents served from Nitro Enclaves. While most of this is provided by aws-nitro-enclaves-cose, it's useful to use the AttestationDoc struct from the aws_nitro_enclaves_nsm_api crate to access the internals of the attestation document from the Cose payload.
This is currently possible, however the dependency on nix blocks these types being used on non *nix systems.
Proposal
As the nix dependency is only required for the driver module, I think it would be reasonable to introduce a nix feature flag. Leaving the feature default enabled would be no change for the crate as it exists.
lfarrel6
commented
1 year ago
Outline of Issue
I'm implementing a crate which will allow clients to verify attestation documents served from Nitro Enclaves. While most of this is provided by aws-nitro-enclaves-cose, it's useful to use the
AttestationDocstruct from the aws_nitro_enclaves_nsm_api crate to access the internals of the attestation document from the Cose payload.This is currently possible, however the dependency on
nixblocks these types being used on non *nix systems.Proposal
As the
nixdependency is only required for the driver module, I think it would be reasonable to introduce anixfeature flag. Leaving the feature default enabled would be no change for the crate as it exists.