Project

General

Profile

Bug #39456

rgw: crypto: HMAC ctors cannot safely assert in (e.g.) FIPS mode

Added by Matt Benjamin 10 months ago. Updated 8 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
Target version:
-
% Done:

0%

Source:
Tags:
Backport:
nautilus
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature:

Description

Strategy to assert in constructors calling external crypto code--especially HMAC--can lead to an inappropriate abend/crash, for example, if the environment is RHEL FIPS and a stored key is too small per policy.

Matt


Related issues

Copied to rgw - Backport #39676: nautilus: rgw: crypto: HMAC ctors cannot safely assert in (e.g.) FIPS mode Resolved

History

#1 Updated by Matt Benjamin 10 months ago

  • Pull request ID set to 27765

#2 Updated by Matt Benjamin 10 months ago

  • Status changed from In Progress to 7

#3 Updated by Casey Bodley 9 months ago

  • Status changed from 7 to Pending Backport

#4 Updated by Nathan Cutler 9 months ago

  • Copied to Backport #39676: nautilus: rgw: crypto: HMAC ctors cannot safely assert in (e.g.) FIPS mode added

#5 Updated by Nathan Cutler 8 months ago

  • Status changed from Pending Backport to Resolved

Also available in: Atom PDF