You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description
When doing a deep scan on KMS keys in AWS, if a key's origin is external (imported key material), the scan fails and the AWS API throws an UnsupportedOperationException with the error message "origin is EXTERNAL which is not valid for this operation." This failure should be ignored and the scan should continue without regarding this failed key.
Environment
OS: MacOS and Linux
driftctl version: v0.38.2
terraform version: v1.3.2
terraform providers versions: aws-sdk-go@1.38.68
How to reproduce
Create a key with an origin that is external
Scan KMS keys
An UnsupportedOperationException is thrown
Possible Solution
Check for UnsupportedOperationException in the error message in enumeration/remote/terraform/provider.go
Log a warning message but do not return the error. This results in the resource being nil
Continue scanning as normal
Additional context
I've only ran into this with AWS KMS keys but it might be possible on other resources.
The text was updated successfully, but these errors were encountered:
Description
When doing a deep scan on KMS keys in AWS, if a key's origin is external (imported key material), the scan fails and the AWS API throws an UnsupportedOperationException with the error message "origin is EXTERNAL which is not valid for this operation." This failure should be ignored and the scan should continue without regarding this failed key.
Environment
How to reproduce
Possible Solution
Additional context
I've only ran into this with AWS KMS keys but it might be possible on other resources.
The text was updated successfully, but these errors were encountered: