Uploaded image for project: 'Puppet'
  1. Puppet
  2. PUP-7957

Puppet uses SHA1 when revoking certificates

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • PUP 4.10.8, PUP 5.2.0
    • PUP 5.4.0
    • None
    • None
    • Platform Core
    • 1
    • Platform Core KANBAN
    • Inspection
    • Security Fix
    • Puppet now uses SHA256 to sign the CRL signature rather than SHA1.
    • No Action

    Description

      When Puppet revokes a certificate and updates the corresponding CRL, it uses SHA1 for generating the CRL signature. SHA1 is being deprecated and should be replaced by SHA256 or better.

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              adrien Adrien Thebo
              Eric Delaney Eric Delaney
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Zendesk Support