Actions
Task #7853
closedTask #7960: FIPS and support for ALLOWED_CONTENT_CHECKSUMS
FIPS: downloader needs to notice if expected-digest-algorithm is FORBIDDEN
Start date:
Due date:
% Done:
0%
Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:
Description
See https://github.com/pulp/pulpcore/blob/master/pulpcore/app/models/repository.py#L302
If a RemoteArtifact has a digest-algorithm specified that is NOT in Artifact.DIGEST_FIELDS, current behavior is to ignore it and just build the rest of the digests. We need instead to notice an empty expected_digests, check for specified-algorithms in Artifact.FORBIDDEN_DIGESTS, and raise an exception when that happens.
See https://hackmd.io/d5y1IaW_QaSJ-DsosMDkjg?view for more discussion.
Updated by fao89 about 4 years ago
- Tracker changed from Issue to Task
- % Done set to 0
- Severity deleted (
2. Medium) - Triaged deleted (
No)
Updated by ppicka about 4 years ago
- Status changed from NEW to ASSIGNED
- Assignee set to ppicka
Updated by pulpbot almost 4 years ago
- Status changed from ASSIGNED to POST
edit: accidentally tagged wrong issue
Updated by daviddavis almost 4 years ago
- Assignee changed from ppicka to daviddavis
Updated by daviddavis almost 4 years ago
- Sprint/Milestone changed from 3.11.0 to 3.12.0
Updated by daviddavis over 3 years ago
- Status changed from ASSIGNED to NEW
- Assignee deleted (
daviddavis)
Updated by daviddavis over 3 years ago
- Status changed from NEW to ASSIGNED
- Assignee set to daviddavis
Updated by pulpbot over 3 years ago
- Status changed from ASSIGNED to POST
Updated by daviddavis over 3 years ago
- Status changed from POST to CLOSED - WONTFIX
Actions