Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-26877

"Error in GnuTLS initialization: Error while performing self checks" in FIPS mode with FIPS:OSPP

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Undefined Undefined
    • None
    • rhel-9.0.0
    • gnutls
    • None
    • sst_security_crypto
    • ssg_security
    • False
    • Hide

      None

      Show
      None

      What were you trying to do that didn't work?

      gnutls errors while performing self checks during initialization.

      Please provide the package NVR for which bug is seen:

      gnutls-3.7.6-12.el9_0

      How reproducible:

      deterministic

      Steps to reproduce

      1. Install RHEL-9.0.0 GA system (compose RHEL-9.0.0-20230112.0)
      2. fips-mode-setup --enable
      3. update-crypto-policies --set FIPS:OSPP
      4. reboot
      5. After reboot:
      6. fips-mode-setup --check
        FIPS mode is enabled.
      7. update-crypto-policies --show
        FIPS:OSPP
      8. dnf install -y wget
      9. Update gnutls to newer version - gnutls-3.7.6-12.el9_0
      10. Try to download anything using "wget https://..."

      Expected results

      gnutls doesn't error while performing self checks.

      Actual results

      Error in GnuTLS initialization: Error while performing self checks.
--2024-02-27 09:52:50--  https://...
Segmentation fault (core dumped)

            dueno@redhat.com Daiki Ueno
            mmarhefk@redhat.com Matus Marhefka
            Daiki Ueno Daiki Ueno
            SSG Security QE SSG Security QE
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: