KMIP secret store cannot store keys
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Barbican |
Fix Released
|
High
|
Nathan Reller | ||
Kilo |
Fix Released
|
Critical
|
Douglas Mendizábal |
Bug Description
The KMIP secret store is not properly storing keys or is failing to store keys. If the result is positive and it stores the key then the key retrieval is incorrect.
To recreate this store a key using the values below for a POST request.
{
"name": "AES key",
"algorithm": "aes",
"bit_length": 128,
"mode": "cbc",
"secret_type": "symmetric",
"payload": "MTIzNDU2NzgxMj
"payload_
"payload_
}
The payload in this example is '1234567812345678'. Then when the key is returned it should be the string '1234567812345678'. However, the string "{'bytes': '12345678123456
If the result is negative, meaning the KMIP appliance could not save the bytes, then an internal server error is returned with 500 error code.
Changed in barbican: | |
assignee: | nobody → Nathan Reller (rellerreller) |
Changed in barbican: | |
status: | New → Confirmed |
importance: | Undecided → High |
milestone: | none → liberty-1 |
Changed in barbican: | |
status: | Fix Committed → Fix Released |
Changed in barbican: | |
milestone: | liberty-1 → 1.0.0 |
Fix proposed to branch: master /review. openstack. org/178179
Review: https:/