vault/17836.txt at auto-plugin-update/hashicorp/vault-plugin-database-redis-elasticache/auto-dependency-upgrades - vault - gitea@git.xfx1.de

mirrors/vault

mirror of https://github.com/hashicorp/vault.git synced 2025-11-06 19:31:09 +01:00

nsimons 4891122917

Make the error and http code clearer when supplying wrong unseal key (#17836 )

* Fix typos

* Return http 400 when wrong unseal key is supplied

* Add changelog

* Add test cases and change one more return case to http 400

The new case is triggered when key length is within valid range
[16, 32], but it has uneven bytes, causing crypto/aes to return
invalid key size.

* remove expected in unit tests

* include error in the new error reason

* add multikey and autoseal test cases

* return invalid key for few more code paths

2022-11-28 16:01:47 -08:00

3 lines

86 B

Plaintext

Raw Permalink Blame History

	```release-note:bug
	`core: trying to unseal with the wrong key now returns HTTP 400`
	```