Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Review scan result of apkam public keys #1965

Open
murali-shris opened this issue May 22, 2024 · 0 comments
Open

Review scan result of apkam public keys #1965

murali-shris opened this issue May 22, 2024 · 0 comments
Labels
arch call Flagging for architecture call discussion

Comments

@murali-shris
Copy link
Member

Describe the bug

  • pkam public keys before apkam feature are not displayed in scan
  • pkam public keys that are created from apkam enrollments on server are displayed in scan
    Review and document the correct behavior.

Steps to reproduce

I created two enrollment buzz and atmos

1) Unauth scan:
@scan
data:["atmos.pixel.pkam.__pkams.__public_keys@alice🛠","buzz.pixel.pkam.__pkams.__public_keys@alice🛠","publickey@alice🛠","signing_publickey@alice🛠"]

2) Auth scan from first onboarded client which has privilege to approve/deny enrollments
@alice🛠@scan
data:["89f91337-b7f6-41e2-96ba-094698cd22e6.default_enc_private_key.__manage@alice🛠","89f91337-b7f6-41e2-96ba-094698cd22e6.default_self_enc_key.__manage@alice🛠","89f91337-b7f6-41e2-96ba-094698cd22e6.new.enrollments.__manage@alice🛠","8de1f61e-d869-4a83-b0b2-29438d73753a.default_enc_private_key.__manage@alice🛠","8de1f61e-d869-4a83-b0b2-29438d73753a.default_self_enc_key.__manage@alice🛠","8de1f61e-d869-4a83-b0b2-29438d73753a.new.enrollments.__manage@alice🛠","@alice🛠:signing_privatekey@alice🛠","d79390b6-ab24-4fdd-b65f-ee58983474c6.default_enc_private_key.__manage@alice🛠","d79390b6-ab24-4fdd-b65f-ee58983474c6.default_self_enc_key.__manage@alice🛠","d79390b6-ab24-4fdd-b65f-ee58983474c6.new.enrollments.__manage@alice🛠","fbd357ae-0a00-48ee-a776-8e9ac4e297bd.new.enrollments.__manage@alice🛠","public:atmos.pixel.pkam.__pkams.__public_keys@alice🛠","public:buzz.pixel.pkam.__pkams.__public_keys@alice🛠","public:publickey@alice🛠","public:signing_publickey@alice🛠"]

3) Auth scan from enrollment -atmos
@alice🛠@scan
data:["public:atmos.pixel.pkam.__pkams.__public_keys@alice🛠","public:buzz.pixel.pkam.__pkams.__public_keys@alice🛠","public:publickey@alice🛠","public:signing_publickey

Expected behavior

Review the below points

  1. whether apkam public keys should be part of unauth scan
  2. auth scan from privileged client will display pkam public keys from all enrollments
    3)auth scan from enrolled client should display only pkam public key of that specific enrollment

Screenshots

No response

Smartphones

No response

Were you using an atApplication when the bug was found?

No response

Additional context

No response
@murali-shris murali-shris added the bug Something isn't working label May 22, 2024
@gkc gkc added arch call Flagging for architecture call discussion and removed bug Something isn't working labels May 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
arch call Flagging for architecture call discussion
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@gkc @murali-shris