Open davidhadas opened 4 months ago
cc @jialez0 this might be related to encoding things
Duplicate of https://github.com/confidential-containers/trustee/issues/281
https://github.com/confidential-containers/trustee/pull/357 might help with this (note that we add a test for a policy with extra lines) but this issue might happen before we actually get to the OPA module and that PR will only fix the resource policy not the attestation one.
Either way, maybe we should close this and discuss on the existing issue.
KBC fails to set policy in KBS and AS unless the rego file ends with an empty line. Either make the code more tolerant or make it clear in docuemtation.
Example:
same issue with
set-attestation-policy