AWS: check validity of KSM key before creating a new encrypted disk.

Browse Source

AWS CreateVolume call does not check if referenced encryption key actually
exists and returns a valid new AWS EBS volume even though an invalid key
was specified. Later on it removes the EBS silently when its encryption fails.

To work around this buggy behavior we manually check that the key exists
before calling CreateVolume.

...

This commit is contained in:

Jan Safranek

2017-08-28 12:52:57 +02:00

parent daf591c193

commit 1ea7fa84fc

9 changed files with 7371 additions and 0 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

6886

vendor/github.com/aws/aws-sdk-go/service/kms/api.go generated vendored Normal file

File diff suppressed because it is too large Load Diff