[23.04 FEAT] openCryptoki ep11 token: master key consistency
Bug #2003629 reported by
bugproxy
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu on IBM z Systems |
Fix Released
|
High
|
Skipper Bug Screeners | ||
opencryptoki (Ubuntu) |
Fix Released
|
High
|
Skipper Bug Screeners |
Bug Description
Feature Description:
Ensure that all APQNs used by an openCryptoki ep11 token are configured with the same master key.
If not, print an error message (to syslog) and fail initialization.
Add a config option to ep11 config file describing the master key verification pattern. If that option is set only APQNs whose configured master keys match the master key verification pattern from the configuration file shall be used by the token.
tags: | added: architecture-s39064 bugnameltc-201331 severity-high targetmilestone-inin2304 |
Changed in ubuntu: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
affects: | ubuntu → linux (Ubuntu) |
affects: | linux (Ubuntu) → opencryptoki (Ubuntu) |
Changed in ubuntu-z-systems: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
Changed in opencryptoki (Ubuntu): | |
importance: | Undecided → High |
Changed in ubuntu-z-systems: | |
importance: | Undecided → High |
status: | New → Triaged |
Changed in opencryptoki (Ubuntu): | |
status: | New → Triaged |
Changed in ubuntu-z-systems: | |
status: | Triaged → Fix Committed |
Changed in opencryptoki (Ubuntu): | |
status: | Triaged → Fix Committed |
information type: | Private → Public |
Changed in ubuntu-z-systems: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
------- Comment From <email address hidden> 2023-01-21 19:59 EDT------- /github. com/opencryptok i/opencryptoki/ releases/ tag/v3. 19.0
This feature is included in the latest released opencryptoki 3.19.0 as available at
https:/