Uploaded image for project: 'Music'
  1. Music
  2. MUSIC-614

fix CRITICAL weak-cryptography issues identified in sonarcloud

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Do
    • Icon: High High
    • Honolulu Release
    • Honolulu Release
    • None

      Sonarcloud identified the following security bugs in your project and, as agreed by the TSC, should be fixed within the Honolulu release. Any not finished in Honolulu must be fixed within the Istanbul release. Follow each of the URLs for details on each each bug, along with recommended fixes.

       
      If any of the links below fail, please find your code on the master list found at <https://sonarcloud.io/organizations/onap/issues?resolved=false&sonarsourceSecurity=weak-cryptography>.
       

      Project: onap_music
      Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
      Message: Use secure mode and padding scheme.
      Severity: BLOCKER
      Line: 82
      Effort:
      Creation-Date: 2019-06-25T15:20:59+0200
      URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXBV0iK3g-g0c4tsZwwS&open=AXBV0iK3g-g0c4tsZwwS

      Project: onap_music
      Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
      Message: Use secure mode and padding scheme.
      Severity: BLOCKER
      Line: 141
      Effort:
      Creation-Date: 2019-06-25T15:20:59+0200
      URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXBV0iK3g-g0c4tsZwwT&open=AXBV0iK3g-g0c4tsZwwT

      Project: onap_music
      Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
      Message: Use secure mode and padding scheme.
      Severity: BLOCKER
      Line: 175
      Effort:
      Creation-Date: 2019-06-25T15:20:59+0200
      URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXGFqwL7PUMrwKN_PfEt&open=AXGFqwL7PUMrwKN_PfEt

      Project: onap_music
      Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
      Message: Use secure mode and padding scheme.
      Severity: BLOCKER
      Line: 205
      Effort:
      Creation-Date: 2019-06-25T15:20:59+0200
      URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXGFqwL7PUMrwKN_PfEu&open=AXGFqwL7PUMrwKN_PfEu

      Project: onap_music
      Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
      Message: Use a dynamically-generated, random IV.
      Severity: CRITICAL
      Line: 206
      Effort: 15min
      Creation-Date: 2019-06-25T15:20:59+0200
      URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXcItibfQSlARQbF3dtR&open=AXcItibfQSlARQbF3dtR======

            zwarico Amy Zwarico
            zwarico Amy Zwarico
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: