#4022 utils: sss_hmac_sha1() function implementation is not FIPS140 compliant
Closed: Fixed 4 years ago by jhrozek. Opened 4 years ago by atikhonov.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 8): Bug 1718933

util/crypto/libcrypto: sss_hmac_sha1() function implementation breaks "No
Algorithm decomposition" / "Do not implement own crypto" rules.

(As a side note: usage of SHA1 itself is eligible.)

Metadata Update from @atikhonov:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1718933

4 years ago

Metadata Update from @atikhonov:
- Issue assigned to atikhonov

4 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 2.2

4 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 2.3 (was: SSSD 2.2)

4 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/4993

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata