In #434 I had proposed to make use of tdx-attest-rs behind a new feature but dropped the idea since the initdata work moved to use it too and that is a valid case event with upstream kernels.
However, @fidencio mentioned a use case that building kbs-client without having to install libtdx-attest* (because of added complexity and the fact that the libs are not yet avail on all OS'es, e.g, 24.04) but still get the basic get_evidence() working can be useful. So I restored my original code and added here for feedback on how it's best handled.
Still WIP/RFC.
In #434 I had proposed to make use of
tdx-attest-rsbehind a new feature but dropped the idea since the initdata work moved to use it too and that is a valid case event with upstream kernels.However, @fidencio mentioned a use case that building
kbs-clientwithout having to installlibtdx-attest*(because of added complexity and the fact that the libs are not yet avail on all OS'es, e.g, 24.04) but still get the basicget_evidence()working can be useful. So I restored my original code and added here for feedback on how it's best handled.