Can't create an 128bit AES key for AWS China Cloud using ciphertrust_cm_key

[475400550]

No description provided.

[SarahThompson]

There was an issue which was fixed in the most recent version (v0.10.2-beta) where a user created in a domain was not able to create a ciphertrust_cm_key (let alone import it to AWS). Does this apply to your case or is the ciphertrust_cm_key is definitely created? Are you able perform other AWS kms operations like creating a ciphertrust_aws_key?

[475400550]

@SarahThompson thank you respond,but i am afraid we are talking two different thing.

1. i can create a CipherTrust Manager keys (AES key)using ciphertrust_cm_key
2. the problem occurs when i set the key_size=128 ,because this value defaults to 256 for AES keys. Options are: 1024, 2048, 3072, 4096. but AWS China cloud only support 128 bits AES key.
   3.its fine when i perform other AWS kms operations like creating a ciphertrust_aws_key

[SarahThompson]

Hi, I can see there is definitely a bug when it comes to creating AES keys other than 256bit. That will be rectified in the next version of the provider. Apologies for the inconvenience!

[475400550]

no problem, may i know when will the next version be published?its an urgent case, we are blocked by this issues

[SarahThompson]

Hi, sorry the delay. I was hoping to establish when a new version will be available yesterday but didn't. I'll update asap.

[SarahThompson]

Apologies (again) for the long delay. There was a hiccup in publishing a new version. It is available now and will support 128bit AES CipherTrust keys.