Devstack tls-proxy fails on newer OpenSSL versions
Bug #1962600 reported by
Michael Johnson
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
devstack |
Fix Released
|
Undecided
|
Michael Johnson |
Bug Description
When devstack is used with the tls-proxy service enabled, it will fail to create keys due to the use of SHA1. Recent versions of OpenSSL no longer allow SHA1 (including the one included in CentOS 9 Stream).
Devstack fails at:
+ lib/tls:
with:
801B93DCE77F000
Changing lib/tls to use SHA256 (the minimum recommended version) resolves the issue.
Changed in devstack: | |
status: | New → In Progress |
To post a comment you must log in.
Existing proposed patch: https:/ /review. opendev. org/c/openstack /devstack/ +/831245