Skip to content

Bug 1773787: Birthday attack against 64-bit block ciphers [release-4.2] #3685

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
openshift-cherrypick-robot wants to merge 1 commit into from
Closed

Bug 1773787: Birthday attack against 64-bit block ciphers [release-4.2] #3685

openshift-cherrypick-robot wants to merge 1 commit into from

Conversation

@openshift-cherrypick-robot
Copy link

@openshift-cherrypick-robot openshift-cherrypick-robot commented Dec 5, 2019

This is an automated cherry-pick of #3389

/assign spadgett

@benjaminapetersen
Update tls.Config with DefaultCiphers() from library-go
1dde32f 
- add bash script to test a sample of good ciphers & bad ciphers
@openshift-cherrypick-robot openshift-cherrypick-robot mentioned this pull request Dec 5, 2019
Merged
@openshift-ci-robot openshift-ci-robot added the bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. label Dec 5, 2019
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Dec 5, 2019

@openshift-cherrypick-robot: This pull request references Bugzilla bug 1777129, which is invalid:

  • expected the bug to target the "4.2.z" release, but it targets "4.4.0" instead
  • expected the bug to be in one of the following states: NEW, ASSIGNED, ON_DEV, POST, POST, but it is MODIFIED instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

[release-4.2] Bug 1777129: Birthday attack against 64-bit block ciphers

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@openshift-ci-robot openshift-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Dec 5, 2019
@spadgett spadgett added this to the v4.2.z milestone Dec 5, 2019
@openshift-ci-robot openshift-ci-robot added the component/backend Related to backend label Dec 5, 2019
@spadgett spadgett changed the title [release-4.2] Bug 1777129: Birthday attack against 64-bit block ciphers [release-4.2] Bug 1773787: Birthday attack against 64-bit block ciphers Dec 5, 2019
@openshift-ci-robot openshift-ci-robot added bugzilla/valid-bug Indicates that a referenced Bugzilla bug is valid for the branch this PR is targeting. and removed bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. labels Dec 5, 2019
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Dec 5, 2019

@openshift-cherrypick-robot: This pull request references Bugzilla bug 1773787, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker.

Details

In response to this:

[release-4.2] Bug 1773787: Birthday attack against 64-bit block ciphers

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

spadgett
spadgett approved these changes Dec 5, 2019
View reviewed changes
Copy link
Member

@spadgett spadgett left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/approve
/lgtm

@openshift-ci-robot openshift-ci-robot added lgtm Indicates that a PR is ready to be merged. approved Indicates a PR has been approved by an approver from all required OWNERS files. labels Dec 5, 2019
@openshift-bot
Copy link
Contributor

openshift-bot commented Dec 5, 2019

/retest

Please review the full test history for this PR and help us cut down flakes.

3 similar comments
@openshift-bot
Copy link
Contributor

openshift-bot commented Dec 5, 2019

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Dec 5, 2019

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Dec 5, 2019

/retest

Please review the full test history for this PR and help us cut down flakes.

@bparees
Copy link

bparees commented Dec 12, 2019

@spadgett @benjaminapetersen https://bugzilla.redhat.com/show_bug.cgi?id=1773787 does not have an upstream 4.3 and 4.4 BZ. was this issue not applicable to those releases?

@bparees
Copy link

bparees commented Dec 13, 2019

/bugzilla refresh

(4.3 BZ is not in verfied, so this is going to go back to invalid-BZ state)

@openshift-ci-robot openshift-ci-robot added bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. and removed bugzilla/valid-bug Indicates that a referenced Bugzilla bug is valid for the branch this PR is targeting. labels Dec 13, 2019
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Dec 13, 2019

@bparees: This pull request references Bugzilla bug 1773787, which is invalid:

  • expected dependent Bugzilla bug 1773786 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is ASSIGNED instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

/bugzilla refresh

(4.3 BZ is not in verfied, so this is going to go back to invalid-BZ state)

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@spadgett
Copy link
Member

spadgett commented Dec 14, 2019

/lgtm cancel
the 4.3 fix did not pass verification

@openshift-ci-robot openshift-ci-robot removed the lgtm Indicates that a PR is ready to be merged. label Dec 14, 2019
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Dec 14, 2019

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: openshift-cherrypick-robot
To complete the pull request process, please assign spadgett
You can assign the PR to them by writing /assign @spadgett in a comment when ready.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci-robot openshift-ci-robot removed the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Dec 14, 2019
@benjaminapetersen benjaminapetersen changed the title [release-4.2] Bug 1773787: Birthday attack against 64-bit block ciphers Bug 1773787: Birthday attack against 64-bit block ciphers [release-4.2] Dec 16, 2019
@sdodson
Copy link
Member

sdodson commented Dec 19, 2019

/bugzilla refresh

@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Dec 19, 2019

@sdodson: This pull request references Bugzilla bug 1773787, which is invalid:

  • expected dependent Bugzilla bug 1773786 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is MODIFIED instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@benjaminapetersen
Copy link
Contributor

benjaminapetersen commented Dec 19, 2019

/hold.
fix is incomplete.

@spadgett spadgett closed this Jul 16, 2020
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Jul 16, 2020

@openshift-cherrypick-robot: This pull request references Bugzilla bug 1773787. The bug has been updated to no longer refer to the pull request using the external bug tracker.

Details

In response to this:

Bug 1773787: Birthday attack against 64-bit block ciphers [release-4.2]

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@spadgett spadgett removed this from the v4.2.z milestone Jul 16, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@spadgett spadgett spadgett approved these changes

@alecmerdler alecmerdler Awaiting requested review from alecmerdler

@benjaminapetersen benjaminapetersen Awaiting requested review from benjaminapetersen

Assignees

@spadgett spadgett

Labels

bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. component/backend Related to backend size/L Denotes a PR that changes 100-499 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@openshift-cherrypick-robot @openshift-ci-robot @openshift-bot @bparees @spadgett @sdodson @benjaminapetersen