Setting token hashing to greater than sha256 will not work with the SQL token backend
Bug #1329554 reported by
Morgan Fainberg
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Identity (keystone) |
Won't Fix
|
Wishlist
|
Unassigned | ||
Bug Description
The SQL Token backend sets the ID of the token to a 64 column. sha512 will generate a 128 character (byte) string.
>>> a =hashlib.
>>> a
'ee26b0dd4af7e7
>>> len(a)
128
>>>
| Changed in keystone: | |
| importance: | Undecided → Medium |
| summary: |
- Setting token hashing to sha512 will not work with the SQL token backend + Setting token hashing to greater than sha256 will not work with the SQL + token backend |
Revision history for this message
| Adam Young (ayoung) wrote | #1 |
Revision history for this message
| Morgan Fainberg (mdrnstm) wrote | #2 |
Revision history for this message
| Dolph Mathews (dolph) wrote | #3 |
Revision history for this message
| Morgan Fainberg (mdrnstm) wrote | #4 |
| Changed in keystone: | |
| importance: | Medium → Wishlist |
| Changed in keystone: | |
| status: | New → Triaged |
| Changed in keystone: | |
| status: | Triaged → Won't Fix |
To post a comment you must log in.
Is there anything wrong with letting end users somehow migtrate the table size to be larger than 64 characters? Ideally, the token ID would not be stored in database tables anywhere but in keystone. We could realistically max out the table size to (I think) 255 chars long without any negative impact.