Bug 2149641
| Summary: | dracut-cmdline[554]: Error in GnuTLS initialization: Error while performing self checks i FIPS mode [rhel-9.0.0.z] | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 9 | Reporter: | RHEL Program Management Team <pgm-rhel-tools> |
| Component: | gnutls | Assignee: | Zoltan Fridrich <zfridric> |
| Status: | CLOSED ERRATA | QA Contact: | Alexander Sosedkin <asosedki> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | high | ||
| Version: | 9.0 | CC: | asosedki, jpazdziora, ssorce |
| Target Milestone: | rc | Keywords: | Triaged, ZStream |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | gnutls-3.7.6-14.el9_0 | Doc Type: | Bug Fix |
| Doc Text: |
Cause:
HMAC file for gnutls, used for integrity checks in FIPS mode, has been moved to `/usr/lib64/.gnutls.hmac`
Consequence:
other software relying on HMAC file location wasn't able to locate it. For example, dracut no longer copied it to initramfs, impacting functionality of NetworkManager during early boot in FIPS mode
Fix:
gnutls HMAC file location has been moved back to `/usr/lib64/.libgnutls.so.30.hmac`
Result:
gnutls HMAC file is successfully installed into initramfs for machines switched to FIPS mode
|
Story Points: | --- |
| Clone Of: | 2148269 | Environment: | |
| Last Closed: | 2023-03-14 13:53:28 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2148269 | ||
| Bug Blocks: | |||
|
Comment 12
errata-xmlrpc
2023-03-14 13:53:28 UTC
|