Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-26877

"Error in GnuTLS initialization: Error while performing self checks" in FIPS mode with FIPS:OSPP

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Undefined Undefined
    • None
    • rhel-9.0.0
    • gnutls
    • None
    • None
    • None
    • rhel-sst-security-crypto
    • ssg_security
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None

      What were you trying to do that didn't work?

      gnutls errors while performing self checks during initialization.

      Please provide the package NVR for which bug is seen:

      gnutls-3.7.6-12.el9_0

      How reproducible:

      deterministic

      Steps to reproduce

      1. Install RHEL-9.0.0 GA system (compose RHEL-9.0.0-20230112.0)
      2. fips-mode-setup --enable
      3. update-crypto-policies --set FIPS:OSPP
      4. reboot
      5. After reboot:
      6. fips-mode-setup --check
        FIPS mode is enabled.
      7. update-crypto-policies --show
        FIPS:OSPP
      8. dnf install -y wget
      9. Update gnutls to newer version - gnutls-3.7.6-12.el9_0
      10. Try to download anything using "wget https://..."

      Expected results

      gnutls doesn't error while performing self checks.

      Actual results

      Error in GnuTLS initialization: Error while performing self checks.
--2024-02-27 09:52:50--  https://...
Segmentation fault (core dumped)

              dueno@redhat.com Daiki Ueno
              mmarhefk@redhat.com Matus Marhefka
              Daiki Ueno Daiki Ueno
              SSG Security QE SSG Security QE
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: