Bug: createkey causes eHSM-KMS-Service to abort.

Question

Bug: createkey causes eHSM-KMS-Service to abort.

nntp4 opened this issue a year ago · comments

If the --purpose flag is passed, creating the key will cause eHSM-KMS-Service to abort.
Example:

# first 
./run_with_single.sh

# second
python3 createkey.py --url  https://127.0.0.1:9002 --keyspec EH_AES_GCM_256  --origin EH_INTERNAL_KEY  --purpose EH_PURPOSE_ENCRYPT_DECRYPT

Yan, Shaopu · Answer 1 · Sat May 06 2023 07:54:23 GMT+0800 (China Standard Time)

currently, it don't support --purpose yet.

nntp4 · Answer 2 · Sat May 06 2023 09:37:27 GMT+0800 (China Standard Time)

currently, it don't support --purpose yet.

It is recommended to implement input validation measures to prevent user input parameters from causing the process to abort, as this could potentially be exploited by hackers to attack the server.

Huang Yang · Answer 3 · Sat May 06 2023 09:40:06 GMT+0800 (China Standard Time)

Make sense. Thanks for your input. We will take a look.