Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-93678

Incorrect PEM password default after an update breaks keylime

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: Generate New Ti...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Major Major
    • rhel-9.7
    • rhel-9.7
    • keylime
    • None
    • keylime-7.12.1-2.el9
    • Yes
    • Important
    • 2
    • rhel-security-special-projects
    • ssg_security
    • 16
    • 2
    • Dev ack
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • SECENGSP Cycle 20, SECENGSP Cycle 21
    • Unspecified Release Note Type - Unknown
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      What were you trying to do that didn't work?

      After updating from keylime on RHEL-9.6 to a scratch build for RHEL-9.7

      I have noticed that PEM file password has changed in configuration files

      from "default" to an empty string.

      What is the impact of this issue to you?

      Keylime cannot access PEM files as the configured password is not correct

      Please provide the package NVR for which the bug is seen:

      This is a scratch build keylime-7.12.0-1.el9

      How reproducible is this bug?:

      always

      Steps to reproduce

      1.  configure and start  keylime  on rhel-9.6
      2. update to 9.7 keylime
      3.  observe keylime services failing to start

      Expected results

      password is preserved in keylime config files

      Actual results

      password is not preserved

              scorreia@redhat.com Sergio Correia
              ksrot@redhat.com Karel Srot
              Sergio Correia Sergio Correia
              Karel Srot Karel Srot
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: