You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.

错误提示“You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.”

<code>[root@linux-node1 images]</code><code># openstack-status</code>

<code>== Glance services ==</code>

<code>openstack-glance-api:                   active</code>

<code>openstack-glance-registry:              active</code>

<code>== Keystone service ==</code>

<code>openstack-keystone:                     active</code>

<code>== Support services ==</code>

<code>libvirtd:                               active</code>

<code>messagebus:                             active</code>

<code>rabbitmq-server:                        active</code>

<code>memcached:                              inactive  (disabled on boot)</code>

<code>== Keystone </code><code>users</code> <code>==</code>

<code>/usr/lib64/python2</code><code>.6</code><code>/site-packages/Crypto/Util/number</code><code>.py:57: PowmInsecureWarning: Not using mpz_powm_sec.  You should rebuild using libgmp &gt;= 5 to avoid timing attack vulnerability.</code>

<code>  </code><code>_warn(</code><code>"Not using mpz_powm_sec.  You should rebuild using libgmp &gt;= 5 to avoid timing attack vulnerability."</code><code>, PowmInsecureWarning)</code>

处理方法：

说明：在Centos6.7系统中自带GMP version 4，但是一些应用如PyCrypto需要使用GMP &gt;= 5。

<code># yum -y groupinstall "Development tools"</code>

<code># yum -y install gcc libgcc glibc libffi-devel libxml2-devel libxslt-devel openssl-devel zlib-devel bzip2-devel ncurses-devel python-devel</code>

<code># tar xvjf gmp-6.1.0.tar.bz2 </code>

<code># cd gmp-6.1.0</code>

<code># ls</code>

<code># ./configure </code>

<code># echo $?</code>

<code># make</code>

<code># make check</code>

<code># make install</code>

<code># yum install python-pip -y</code>

<code>#pip install --ignore-installed PyCrypto</code>

<code># /etc/init.d/openstack-keystone restart</code>

问题得到解决，记录下

本文转自 冰冻vs西瓜 51CTO博客，原文链接：http://blog.51cto.com/molewan/1727258，如需转载请自行联系原作者