Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Only enforce password hashing check if FIPS enabled #32383

Merged
merged 1 commit into from
Jul 26, 2018
Merged

Only enforce password hashing check if FIPS enabled #32383

merged 1 commit into from
Jul 26, 2018

Conversation

jasontedor
Copy link
Member

This commit modifies the FIPS password hashing algorithm check to only be executed if FIPS mode is enabled.

@jasontedor
Only enforce password hashing check if FIPS enabled
330dbea 
This commit modifies the FIPS password hashing algorithm check to only
be executed if FIPS mode is enabled.
@jasontedor jasontedor requested a review from jkakavas July 25, 2018 22:07
@elasticmachine
Copy link
Collaborator

Pinging @elastic/es-security

jkakavas
jkakavas approved these changes Jul 25, 2018
View reviewed changes
Copy link
Member

@jkakavas jkakavas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Thanks for catching this Jason.

@jasontedor jasontedor merged commit 467a60b into elastic:master Jul 26, 2018
jasontedor added a commit that referenced this pull request Jul 26, 2018
@jasontedor
Only enforce password hashing check if FIPS enabled (#32383)
4c2fbcf 
This commit modifies the FIPS password hashing algorithm check to only
be executed if FIPS mode is enabled.
jasontedor added a commit that referenced this pull request Jul 26, 2018
@jasontedor
Only enforce password hashing check if FIPS enabled (#32383)
06e462e 
This commit modifies the FIPS password hashing algorithm check to only
be executed if FIPS mode is enabled.
jasontedor added a commit to jasontedor/elasticsearch that referenced this pull request Jul 26, 2018
@jasontedor
Merge branch 'master' into add-index-store
125bd12 
* master:
  Only enforce password hashing check if FIPS enabled (elastic#32383)
  [DOCS] Fix formatting error in Slack action
  Painless: Fix documentation links to use existing refs (elastic#32335)
  Painless: Decouple PainlessLookupBuilder and Whitelists (elastic#32346)
@jasontedor jasontedor deleted the fips-mode-bootstrap-check branch July 26, 2018 01:29
dnhatn added a commit that referenced this pull request Jul 27, 2018
@dnhatn
Merge branch '6.x' into ccr-6.x
f3dae85 
* 6.x:
  Only enforce password hashing check if FIPS enabled (#32383)
  Introduce fips_mode setting and associated checks (#32326)
  [DOCS] Fix formatting error in Slack action
  Ingest: Support integer and long hex values in convert (#32213)
  Release pipelined request in netty server tests (#32368)
  Add opaque_id to index audit logging (#32260)
  Painless: Fix documentation links to use existing refs (#32335)
  Painless: Decouple PainlessLookupBuilder and Whitelists (#32346)
  [DOCS] Adds recommendation for xpack.security.enabled (#32345)
  [test] package pre-install java check (#32259)
  [DOCS] Adds link from bucket_span property to common time units
  [DOCS] Fixes typo in ML aggregations page
  [ML][DOCS] Add documentation for detector rules and filters (#32013)
  Bump the 6.x branch to 6.5.0 (#32361)
  fixes broken build repository-s3 for third-party-tests
dnhatn added a commit that referenced this pull request Jul 27, 2018
@dnhatn
Merge branch 'master' into ccr
2f756b0 
* master:
  Remove reference to non-existent store type (#32418)
  [TEST] Mute failing FlushIT test
  Fix ordering of bootstrap checks in docs (#32417)
  [TEST] Mute failing InternalEngineTests#testSeqNoAndCheckpoints
  [TEST] Mute failing testConvertLongHexError
  bump lucene version after backport
  Upgrade to Lucene-7.5.0-snapshot-608f0277b0 (#32390)
  [Kerberos] Avoid vagrant update on precommit (#32416)
  TESTS: Move netty leak detection to paranoid level (#32354)
  [DOCS] Fixes formatting of scope object in job resource
  Copy missing segment attributes in getSegmentInfo (#32396)
  AbstractQueryTestCase should run without type less often (#28936)
  INGEST: Fix Deprecation Warning in Script Proc. (#32407)
  Switch x-pack/plugin to new style Requests (#32327)
  Docs: Correcting a typo in tophits (#32359)
  Build: Stop double generating buildSrc pom (#32408)
  TEST: Avoid triggering merges in FlushIT
  Fix missing JavaDoc for @throws in several places in KerberosTicketValidator.
  Switch x-pack full restart to new style Requests (#32294)
  Release requests in cors handler (#32364)
  Painless: Clean Up PainlessClass Variables (#32380)
  Docs: Fix callouts in put license HL REST docs (#32363)
  [ML] Consistent pattern for strict/lenient parser names (#32399)
  Update update-settings.asciidoc (#31378)
  Remove some dead code (#31993)
  Introduce index store plugins (#32375)
  Rank-Eval: Reduce scope of an unchecked supression
  Make sure _forcemerge respects `max_num_segments`. (#32291)
  TESTS: Fix Buf Leaks in HttpReadWriteHandlerTests (#32377)
  Only enforce password hashing check if FIPS enabled (#32383)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jkakavas jkakavas jkakavas approved these changes

Assignees
No one assigned
Labels
>non-issue :Security/Security Security issues without another label v6.4.0 v6.5.0 v7.0.0-beta1
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@jasontedor @elasticmachine @jkakavas @colings86