10.1. Regressions in 7.7.0
The following regressions were introduced in Connext 7.7.0.
10.1.1. Security Plugins
10.1.1.1. Intraparticipant communication fails when origin authentication is applied to messages
If the Governance tag <rtps_protection_kind> is set to a value containing
WITH_ORIGIN_AUTHENTICATION and the
cryptography.max_receiver_specific_macs
property is set to a value other than AUTO, then the DomainParticipant may fail to receive
messages that are sent from itself. This problem occurs when the message is
sent to itself as well as to other DomainParticipants, and the number of destinations of the
message exceeds the max_receiver_specific_macs value. The following error
message accompanies the reception failure:
RTI_Security_Cryptography_verifyReceiverSpecificMac:OpenSSL function EVP_DecryptFinal_ex (GMAC) failed with error: (error details not available)
Not fixed yet
[RTI Issue ID SEC-2952]
10.1.1.2. Segmentation fault when origin authentication is applied to submessages only
Consider the following scenario:
The Governance tag
<rtps_protection_kind>is set to a value that does NOT containWITH_ORIGIN_AUTHENTICATION.A different Governance tag (for example,
<metadata_protection_kind>) is set to a value that does containWITH_ORIGIN_AUTHENTICATION.The cryptography.max_receiver_specific_macs property is set to a value other than
AUTO.
In this scenario, you may experience a segmentation fault in the internal
function RTI_Security_Cryptography_serializeReceiverSpecificMacs while
sending a message. This problem occurs when the number of destinations of the
message exceeds the max_receiver_specific_macs value.
Not fixed yet
[RTI Issue ID SEC-2955]
10.1.1.3. No endpoint discovery when using Lightweight Security and TypeObject v2
When using the Lightweight Builtin Security Plugins combined with TypeObject v2 (which is the default), endpoint discovery does not complete when type information exchange is required to complete matching. This problem affects scenarios where endpoints use different but assignable types, as well as scenarios where the application explicitly requires type resolution from remote DomainParticipants. Such applications include DynamicData applications, DDS Spy, and Routing Service.
See Using Lightweight Builtin Security Plugins with TypeObject v2 may result in communication issues between Connext applications for additional information.
Not fixed yet
[RTI Issue ID SEC-2962]