go-tdx-guest offers a library to wrap the /dev/tdx-guest device in Linux, as well as a library for attestation verification of fundamental components of an attestation quote.
The code to verify the TDX Quote is added in verify.go.
The Verify directory contains a trusted root to be used to verify the certificate chain when TrustedRoots options are empty.
The PCS directory defines values related to Intel PCS API service.
tools/check contains CLI code used to run verify.
The code to verify the TDX Quote is added in verify.go. The Verify directory contains a trusted root to be used to verify the certificate chain when TrustedRoots options are empty. The PCS directory defines values related to Intel PCS API service. tools/check contains CLI code used to run verify.