While trying to register a platform I used the pcsclient.py fetch command relying on default values for input and output files. After wasting time figuring out why the platform_collateral.json has an empty PCK cert list I eventually found in the code that the client fetches PCK certs only if self.has_platform_list is set:
|
if self.has_platform_list: |
It is defined as
|
self.has_platform_list = bool(args.input_file) |
which means that if you just want to use the default platform_list.json file as input, PCK certs won't be fetch.
Work around is to specify -i option, but code should probably be fixed.
While trying to register a platform I used the
pcsclient.py fetchcommand relying on default values for input and output files. After wasting time figuring out why theplatform_collateral.jsonhas an empty PCK cert list I eventually found in the code that the client fetches PCK certs only ifself.has_platform_listis set:confidential-computing.tee.dcap/tools/PcsClientTool/pcsclient.py
Line 175 in fe55537
It is defined as
confidential-computing.tee.dcap/tools/PcsClientTool/pcsclient.py
Line 152 in fe55537
which means that if you just want to use the default
platform_list.jsonfile as input, PCK certs won't be fetch.Work around is to specify
-ioption, but code should probably be fixed.