You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.-优快云博客

本文介绍了解决PyCrypto库在使用过程中出现的定时攻击漏洞警告的方法，通过升级GMP库版本避免此安全风险，并提供了详细的步骤指导。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

错误提示“You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.”

[root@linux-node1 images]# openstack-status
== Glance services ==
openstack-glance-api:                   active
openstack-glance-registry:              active
== Keystone service ==
openstack-keystone:                     active
== Support services ==
libvirtd:                               active
messagebus:                             active
rabbitmq-server:                        active
memcached:                              inactive  (disabled on boot)

== Keystone users ==

/usr/lib64/python2.6/site-packages/Crypto/Util/number.py:57: PowmInsecureWarning: Not using mpz_powm_sec.  You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.

  _warn("Not using mpz_powm_sec.  You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.", PowmInsecureWarning)

处理方法：

说明：在Centos6.7系统中自带GMP version 4，但是一些应用如PyCrypto需要使用GMP >= 5。

# yum -y groupinstall "Development tools"
# yum -y install gcc libgcc glibc libffi-devel libxml2-devel libxslt-devel openssl-devel zlib-devel bzip2-devel ncurses-devel python-devel
# tar xvjf gmp-6.1.0.tar.bz2 
# cd gmp-6.1.0
# ls
# ./configure 
# echo $?
# make
# echo $?
# make check
# echo $?
# make install
# echo $?
# yum install python-pip -y
#pip install --ignore-installed PyCrypto
# /etc/init.d/openstack-keystone restart