X-Git-Url: http://review.tizen.org/git/?a=blobdiff_plain;f=src%2Fmanager%2Fservice%2Fckm-logic.cpp;h=4bcb3c7c6564fc43a9a21770d5065b34bb32ec67;hb=1c21ce8135fbbe36fc8c71bb90304e7334622f0d;hp=ae9a7ed77ea9d6c64ca6225dcf1c0c2bcff80c02;hpb=53a3d9725d42bbbc3118183dc3bdaa93e3b7c1ba;p=platform%2Fcore%2Fsecurity%2Fkey-manager.git

diff --git a/src/manager/service/ckm-logic.cpp b/src/manager/service/ckm-logic.cpp
index ae9a7ed..4bcb3c7 100644
--- a/src/manager/service/ckm-logic.cpp
+++ b/src/manager/service/ckm-logic.cpp
@@ -1594,11 +1594,23 @@ RawBuffer CKMLogic::importWrappedKey(
 		if (retCode != CKM_API_SUCCESS)
 			return retCode;
 
-		retCode = readDataHelper(false, cred, DataType::DB_KEY_FIRST, wrappingKeyName,
-								wrappingKeyOwner, wrappingKeyPassword, wrappingKey);
+		DataType wrappingKeyType;
+		retCode = readDataHelper(false,
+								 cred,
+								 DataType::DB_KEY_FIRST,
+								 wrappingKeyName,
+								 wrappingKeyOwner,
+								 wrappingKeyPassword,
+								 wrappingKey,
+								 wrappingKeyType);
 		if (retCode != CKM_API_SUCCESS)
 			return retCode;
 
+		if (wrappingKeyType.isKeyPublic()) {
+			LogError("Public key can not be used for decryption");
+			return CKM_API_ERROR_INPUT_PARAM;
+		}
+
 		if (!m_decider.checkStore(wrappingKey->backendId(), keyType, policy, true)) {
 			LogDebug("Can't import the wrapped key to backend " <<
 			         static_cast<int>(wrappingKey->backendId()) << " with given policy");