Bug ID 556100: Importing previously exported FIPS key might result in 'file expected to exist' error message.

Last Modified: Mar 12, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP LTM(all modules)

Known Affected Versions:
11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.2, 11.5.2 HF1, 11.5.3, 11.5.3 HF1, 11.5.3 HF2, 11.5.4, 11.5.4 HF1, 11.5.4 HF2, 11.5.4 HF3, 11.5.4 HF4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9

Opened: Nov 04, 2015
Severity: 3-Major

Symptoms

Importing a previously exported FIPS key might result in 'file expected to exist' error message.

Impact

Unable to install the exported FIPS key from the given local file. System posts a 'file expected to exist' error message. This is a rarely occurring, difficult-to-reproduce condition. Error messages appear similar to the following: -- err mcpd[6679]: 01070712:3: Caught configuration exception (0), file (/var/tmp/key_mgmt/IGqXXs/ssl.key/fips.exported-key-file.key) expected to exist..

Conditions

When importing a exported FIPS key from a local file with the tmsh command 'tmsh install /sys crypto key xxx from-local-file xxxxxxxxxxxxx security-type fips', the system might post an error similar to the following: file (/var/tmp/key_mgmt/xxxxx/ssl.key/xxxxxxxxx.key) expected to exist.

Workaround

Reboot the system.

Fix Information

None

Behavior Change