This is an automated email from the ASF dual-hosted git repository.
abhishek pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/druid.git
The following commit(s) were added to refs/heads/master by this push:
new ed6df26a91a update salt size (#15758)
ed6df26a91a is described below
commit ed6df26a91ace4d6346cc5ea3dc6053d3349b987
Author: Parth Agrawal <[email protected]>
AuthorDate: Thu Jan 25 17:05:53 2024 +0530
update salt size (#15758)
As part of becoming FIPS compliance, we are seeing this error: salt must be
at least 128 bits when we run the Druid code against FIPS Compliant
cryptographic security providers.
This PR fixes the salt size used in Pac4jSessionStore.java
---
.../main/java/org/apache/druid/security/pac4j/Pac4jSessionStore.java | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/extensions-core/druid-pac4j/src/main/java/org/apache/druid/security/pac4j/Pac4jSessionStore.java
b/extensions-core/druid-pac4j/src/main/java/org/apache/druid/security/pac4j/Pac4jSessionStore.java
index 6c5c57a3319..b0187d5e729 100644
---
a/extensions-core/druid-pac4j/src/main/java/org/apache/druid/security/pac4j/Pac4jSessionStore.java
+++
b/extensions-core/druid-pac4j/src/main/java/org/apache/druid/security/pac4j/Pac4jSessionStore.java
@@ -65,7 +65,7 @@ public class Pac4jSessionStore<T extends WebContext>
implements SessionStore<T>
"CBC",
"PKCS5Padding",
"PBKDF2WithHmacSHA256",
- 8,
+ 128,
65536,
128
);
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
