Closed lucasvuotto closed 2 months ago
Got some time to try out more stuff:
openpgp
implementation in the code: changing https://github.com/hashicorp/terraform-provider-aws/blob/main/internal/service/iam/user_login_profile_test.go#L452-L527 for ECDSA keys passes the tests successfully.Managed to try out some more stuff: the culprit is the version: both 2.2.19 and 2.2.20 fail, and 2.2.21 succees: https://dev.gnupg.org/T4897 . From there, the important bit of information is
which is exactly what I'm experiencing. Might it be worth a comment in the documentation?
Marking this issue as stale due to inactivity. This helps our maintainers find and focus on the active issues. If this issue receives no comments in the next 30 days it will automatically be closed. Maintainers can also remove the stale label.
If this issue was automatically closed and you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thank you!
I'm going to lock this issue because it has been closed for 30 days β³. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
Community Note
Terraform CLI and Terraform AWS Provider Version
Affected Resource(s)
At least
and based on a quick GitHub's code search, aws_lightsail_key_pair is probably affected too.
Terraform Configuration Files
It's a reproducer script, as the setup requires PGP keys. Alternatively, I can provide a tarball with the directory the script generates.
Debug Output
Panic Output
Expected Behavior
Being able to decrypt the encrypted payload.
Actual Behavior
When encrypting against an EC, despite the PGP packet being seemingly well-formed (based on the fact that it contains the keytype and fingerprint), the payload can't be decrypted:
Steps to Reproduce
Run the inlined script. It requires
terraform
,gpg
andbase64
. It will:repro/
directory which will be the workplaceGNUPGHOME
main.tf
with the required configuration and resources. In particular, do note that it includesaws_iam_user
resources.terraform init && terraform apply
repro/
directoryImportant Factoids
Didn't try against
keychain
as I don't have an account there.References
Didn't find any.