Task #7853: FIPS: downloader needs to notice if expected-digest-algorithm is FORBIDDEN - Pulp

Actions

Send by e-mail Copy link

Task #7853

closed

Task #7960: FIPS and support for ALLOWED_CONTENT_CHECKSUMS

FIPS: downloader needs to notice if expected-digest-algorithm is FORBIDDEN

Added by ggainey about 4 years ago. Updated over 3 years ago.

Status:

CLOSED - WONTFIX

Priority:

Normal

Assignee:

daviddavis

Category:

Sprint/Milestone:

3.12.0

Start date:

Due date:

% Done:

Estimated time:

Platform Release:

Groomed:

Sprint Candidate:

Tags:

Sprint:

Quarter:

Description

See https://github.com/pulp/pulpcore/blob/master/pulpcore/app/models/repository.py#L302

If a RemoteArtifact has a digest-algorithm specified that is NOT in Artifact.DIGEST_FIELDS, current behavior is to ignore it and just build the rest of the digests. We need instead to notice an empty expected_digests, check for specified-algorithms in Artifact.FORBIDDEN_DIGESTS, and raise an exception when that happens.

See https://hackmd.io/d5y1IaW_QaSJ-DsosMDkjg?view for more discussion.

Actions

Send by e-mail Copy link

Also available in: Atom PDF

Project

Profile

Help

Pulp

Agile boards

Custom queries

Task #7853

FIPS: downloader needs to notice if expected-digest-algorithm is FORBIDDEN

Updated by fao89 almost 4 years ago

Updated by ppicka almost 4 years ago

Updated by daviddavis almost 4 years ago

Updated by pulpbot almost 4 years ago

Updated by dalley almost 4 years ago

Updated by daviddavis over 3 years ago

Updated by daviddavis over 3 years ago

Updated by daviddavis over 3 years ago

Updated by daviddavis over 3 years ago

Updated by daviddavis over 3 years ago

Updated by pulpbot over 3 years ago

Updated by daviddavis over 3 years ago

Updated by daviddavis over 3 years ago