Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Delete default encryption key and default self encryption key when deleting the enrollment key. #2118

Closed
sitaram-kalluri opened this issue Oct 9, 2024 · 0 comments · Fixed by #2147
Closed

Delete default encryption key and default self encryption key when deleting the enrollment key. #2118

sitaram-kalluri opened this issue Oct 9, 2024 · 0 comments · Fixed by #2147
Assignees
@sitaram-kalluri @srieteja
Labels
bug Something isn't working

Comments

@sitaram-kalluri
Copy link
Member

sitaram-kalluri commented Oct 9, 2024
edited
Loading

Describe the bug

  • When an enrollment is approved, the default encryption key and default self encryption key are creating. When deleting the enrollment revoked enrollment, only the enrollment key is deleted, but the default encryption key and default self encryption key are not deleted. After deleting the enrollment key, these key are of no use. Delete these keys also.

Adding the log:

Before enrollment key deletion:
-----------------------------------------------
@alice🛠@scan
data:["19f571bb-25a7-409d-80cb-984f2bc882a6.default_enc_private_key.__manage@alice🛠","19f571bb-25a7-409d-80cb-984f2bc882a6.default_self_enc_key.__manage@alice🛠","19f571bb-25a7-409d-80cb-984f2bc882a6.new.enrollments.__manage@alice🛠"]

After enrollment key deletion:
-----------------------------------------------
@alice🛠@scan
data:["19f571bb-25a7-409d-80cb-984f2bc882a6.default_enc_private_key.__manage@alice🛠","19f571bb-25a7-409d-80cb-984f2bc882a6.default_self_enc_key.__manage@alice🛠"]
@alice🛠@

Steps to reproduce

  1. Create an enrollment request.
  2. Approve the enrollment request
  3. Then revoke the enrollment request
  4. Delete the revoked enrollment request
  5. The enrollment key is successfully deleted. The default self encryption key and default encryption key still exist in the keystore which are of no use.

Expected behavior

Delete the default encryption key and default self encryption key related to the enrollment.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sitaram-kalluri sitaram-kalluri

@srieteja srieteja

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
2 participants
@sitaram-kalluri @srieteja