Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Major
Fix Version/s: rhel-10.0.beta
Affects Version/s: rhel-10.0.beta
Component/s: gnupg2
Labels:

Fixed in Build:
gnupg2-2.4.5-1.el10
Regression:
None
Severity:
None
sprint_count:
1

Pool Team:

rhel-sst-security-crypto
Sub-System Group:

ssg_security

Internal Target Milestone:
20
Story Points:
1
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Sprint:
Crypto24Q3

Acceptance Criteria:
1. gnupg2 is able to generate a key in FIPS mode with default configuration
2. gnupg2 by default generates 3072b RSA key in both regular and FIPS mode
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/134986
Test Coverage:

Automated

Release Note Type:
Unspecified Release Note Type - Unknown

Experience:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

/CoreOS/gnupg2/Sanity/key-generation

Please provide the package NVR for which bug is seen:

gnupg2-2.4.4-1.el10

Expected results

passes

Actual results

Fails in FIPS:

 ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::   Quick key generation
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

:: [ 00:43:48 ] :: [  BEGIN   ] :: Generate key with default algorithm :: actually running 'gpg2 --homedir ./.gnupg --batch --passphrase '' --quick-gen-key keygentest default default 0'
gpg: directory '/tmp/tmp.fingertipt/./.gnupg' created
gpg: invalid item 'S2' in preference string
gpg: agent_genkey failed: Not supported
gpg: key generation failed: Not supported
:: [ 00:43:48 ] :: [   FAIL   ] :: Generate key with default algorithm (Expected 0, got 2)
:: [ 00:43:48 ] :: [  BEGIN   ] :: Running 'gpg2 --homedir ./.gnupg --list-keys keygentest'
gpg: /tmp/tmp.fingertipt/./.gnupg/trustdb.gpg: trustdb created
gpg: error reading key: No public key
:: [ 00:43:48 ] :: [   FAIL   ] :: Command 'gpg2 --homedir ./.gnupg --list-keys keygentest' (Expected 0, got 2)
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::   Duration: 0s
::   Assertions: 0 good, 2 bad
::   RESULT: FAIL


::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::   Default algorithm
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

:: [ 00:43:49 ] :: [   FAIL   ] :: File 'key-info.txt' should contain '^uid[[:space:]]*\[.*\] keygentest' 
:: [ 00:43:49 ] :: [   FAIL   ] :: File 'key-info.txt' should contain '^pub[[:space:]]*rsa3072' 
:: [ 00:43:49 ] :: [   FAIL   ] :: File 'key-info.txt' should contain '^sub[[:space:]]*rsa3072' 
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::   Duration: 1s
::   Assertions: 0 good, 3 bad
::   RESULT: FAIL

links to

RHBA-2024:134986 gnupg2 bug fix and enhancement update

Assignee:: Jakub Jelen

Reporter:: Stanislav Zidek

Developer:: Jakub Jelen

QA Contact:: Stanislav Zidek

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/06/24 12:36 PM

Updated:: 2024/07/16 1:29 PM

Target end:: 2024/07/15

Details

Description

/CoreOS/gnupg2/Sanity/key-generation

Please provide the package NVR for which bug is seen:

Expected results

Actual results

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates