[
https://issues.apache.org/jira/browse/RANGER-5498?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Vikas Kumar updated RANGER-5498:
--------------------------------
Summary: [KMS]: Use provided saltSize parameter at all places in
generateSalt method instead of static member (was: [KMS]: New encryption
algorithm flow is creating wrong salt, may cause upgrade failure)
> [KMS]: Use provided saltSize parameter at all places in generateSalt method
> instead of static member
> ----------------------------------------------------------------------------------------------------
>
> Key: RANGER-5498
> URL: https://issues.apache.org/jira/browse/RANGER-5498
> Project: Ranger
> Issue Type: Bug
> Components: kms
> Reporter: Vikas Kumar
> Assignee: Vikas Kumar
> Priority: Major
>
> *Issue:*
> Issue is in
> {code:java}
> RangerMasterKey.generateSalt() {code}
> method. It is creating salt of size 16, creating holder byte[] of size 16 but
> copying only the first 8 bits into the target array (default size). As a
> result, salt is not getting generated as expected. It's weak.
> Since this code has not yet been released and being targeted for 3.0. There
> would not be any upgrade failure but needs to be fixed.
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
