Project

Profile

Help

Actions
Send by e-mail Copy link

Story #7561

closed

Task #7960: FIPS and support for ALLOWED_CONTENT_CHECKSUMS

As a user, I can add checksums to ALLOWED_CONTENT_CHECKSUMS

Added by daviddavis over 3 years ago. Updated over 3 years ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Normal
Assignee:
ipanova@redhat.com
Category:
-
Sprint/Milestone:
3.9.0
Start date:
Due date:
% Done:

100%

Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Katello
Sprint:
Sprint 87
Quarter:

Description

This would probably require the user run a script/migration that would fill in the missing checksum info.

Related issues

Related to Pulp - Story #5216: As a user, I can configure which checksum types I want to use in PulpCLOSED - CURRENTRELEASEggainey

Actions
Related to Pulp - Story #7696: As a plugin developer, I have the Artifacts checked at pre-save time against the ALLOWED_CONTENT_CHECKSUMS instead of at __init__CLOSED - CURRENTRELEASEggainey

Actions
Actions
Copy link
 #1

Updated by daviddavis over 3 years ago

This came up in a conversation with Katello.

Actions
Copy link
 #2

Updated by daviddavis over 3 years ago

  • Related to Story #5216: As a user, I can configure which checksum types I want to use in Pulp added
Actions
Copy link
 #3

Updated by ipanova@redhat.com over 3 years ago

  • Related to Story #7696: As a plugin developer, I have the Artifacts checked at pre-save time against the ALLOWED_CONTENT_CHECKSUMS instead of at __init__ added
Actions
Copy link
 #4

Updated by daviddavis over 3 years ago

  • Sprint/Milestone set to 3.9.0
  • Sprint set to Sprint 85
Actions
Copy link
 #5

Updated by daviddavis over 3 years ago

This command would have to bypass the ALLOWED_CONTENT_CHECKSUMS check[0]. The problem is that this check will run BEFORE the command. So what we'll probably want to do is check sys.argv[1] against the command name and if it matches, bypass this check.

[0] https://github.com/pulp/pulpcore/blob/7335665daa2ccfa3ae458049527ffe01dc075d78/pulpcore/app/settings.py#L285-L305

Actions
Copy link
 #7

Updated by ipanova@redhat.com over 3 years ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to ipanova@redhat.com
Actions
Copy link
 #8

Updated by pulpbot over 3 years ago

  • Status changed from ASSIGNED to POST
Actions
Copy link
 #9

Updated by rchan over 3 years ago

  • Sprint changed from Sprint 85 to Sprint 86
Actions
Copy link
 #10

Updated by rchan over 3 years ago

  • Sprint changed from Sprint 86 to Sprint 87

Added by ipanova@redhat.com over 3 years ago

Revision 39d395d9 | View on GitHub

As a user, I have artifacts compliant with the allowed checksums.

Enabled users to add/remove checksums to ALLOWED_CONTENT_CHECKSUMS. Added check for forbidden checksums. Added command to handle artifacts with missing and fobidden checksums.

closes #7561 closes #7914

https://pulp.plan.io/issues/7914 https://pulp.plan.io/issues/7561

Actions
Copy link
 #11

Updated by ipanova@redhat.com over 3 years ago

  • Status changed from POST to MODIFIED
  • % Done changed from 0 to 100
Actions
Copy link
 #12

Updated by pulpbot over 3 years ago

  • Status changed from MODIFIED to CLOSED - CURRENTRELEASE
Actions
Copy link
 #13

Updated by ipanova@redhat.com over 3 years ago

  • Parent issue set to #7960
Actions
Send by e-mail Copy link

Also available in: Atom PDF