Add client certificates to push-attestation prototype

This replaces the usage of `default-tls` feature from reqwest with
`native-tls`, which uses OpenSSL as backend on Linux.

Add 'anyhow' crate as dependency to add context information to user
facing errors.

This also disables the hostname verification because the certificates
generated by the verifier don't have the Subject Alternative Name (SAN)
set properly, making the certificates to fail hostname verification

Signed-off-by: Anderson Toshiyuki Sasaki <[email protected]>

Author: ansasaki

Cargo.lock

@@ -17,6 +17,7 @@ version = "0.2.7"
 [workspace.dependencies]
 actix-rt = "2"
 actix-web =  { version = "4", default-features = false, features = ["macros", "openssl"] }
+anyhow = { version = "1.0", features = ["backtrace"] }
 assert_cmd = { version = "2.0.16" }
 base64 = "0.22"
 cfg-if = "1"
@@ -35,7 +36,7 @@ picky-asn1-der = "0.4"
 picky-asn1-x509 = "0.12"
 predicates = { version = "3.1.3" }
 pretty_env_logger = "0.5"
-reqwest = {version = "0.12", default-features = false, features = ["json", "default-tls"]}
+reqwest = {version = "0.12", default-features = false, features = ["json", "native-tls"]}
 serde = "1.0.80"
 serde_derive = "1.0.80"
 serde_json = { version = "1.0", features = ["raw_value"] }

Cargo.toml

@@ -9,6 +9,7 @@ version.workspace = true
 
 [dependencies]
 actix-web.workspace = true
+anyhow.workspace = true
 assert_cmd.workspace = true
 clap.workspace = true
 keylime.workspace = true
@@ -24,6 +25,7 @@ tokio.workspace = true
 
 [dev-dependencies]
 actix-rt.workspace = true
+tempfile.workspace = true
 
 [features]
 # The features enabled by default