389-ds-base

Clone
Source Code
GIT

#50528 PBKDF2 hashing does not work in FIPS mode
Closed: wontfix 3 years ago by spichugi. Opened 4 years ago by mhonek.

Closed: wontfix
Reopen Issue

Issue Description

When NSS is run in FIPS mode (either Level 1 - the internal token is FIPS, or Level 2 - the NSS database is set to FIPS mode), it is not possible to extract the produced hash using PK11_ExtractKeyValue().

Package Version and Platform

1.4

Steps to reproduce

  1. Run in FIPS mode.
  2. Trigger the pbkdf2_sha256_hash function, e.g. by trying to bind with a password that's stored with PBKDF2.
  3. The code trips over PK11_ExtractKeyValue call.

Actual results

The function fails.

Expected results

The hash (i.e. key value) is correctly extracted.

Metadata Update from @mhonek:
- Custom field origin adjusted to None
- Custom field reviewstatus adjusted to None
- Issue set to the milestone: 1.4.3 (was: 1.4.2)
4 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/3584

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix
- Issue status updated to: Closed (was: Open)
3 years ago

Login to comment on this ticket.

Metadata

Security

None
None
major
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.