Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Major
Fix Version/s: rhos-18.0.0
Affects Version/s: None
Component/s: python-google-auth
Labels:
None

Story Points:
2
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Dev Approval:
Committed
Docs Approval:
?
Fixed in Build:
python-google-auth-2.12.0-3.el9ost
PM Approval:
?
QE Approval:
?
Regression:
None
Intelligence Requested:
Market:
Errata Link:
https://errata.engineering.redhat.com/advisory/133297
Target Version:

rhos-18.0.0

Severity:
Moderate

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

The python-google-auth library implements a fallback mechanism wherein it tries to import signing from python-cryptography (thereby using openssl) and falling back to python-rsa.

To the extent possible, we should be eliminating usage and references to encryption libraries that are not being validated for usage in FIPS-required environments.

Since python-rsa is not going to be a supported encryption algorithm in FIPS environments and we do provide python-cryptography, we should patch the dependency out of python-google-auth.

is depended on by

OSPRH-6631 FIPS: OSO18: drop python-rsa from the distribution

Closed

links to

RHEA-2024:133297 Release of components for Red Hat OpenStack Services on OpenShift 18.0

Assignee:: Shreshtha Joshi

Reporter:: Lon Hohberger

Team:: rhos-dfg-reldel

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2024/04/26 2:48 PM

Updated:: 2024/08/13 2:40 PM

Resolved:: 2024/08/13 2:40 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates

PagerDuty