Back to bug 2004207
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Red Hat Bugzilla | 2021-09-14 17:31:02 UTC | Pool ID | sst_security_crypto_rhel_9 | |
| Red Hat One Jira (issues.redhat.com) | 2021-09-14 17:32:39 UTC | Link ID | Red Hat Issue Tracker RHELPLAN-97139 | |
| Alexander Sosedkin | 2021-09-14 17:35:08 UTC | Keywords | Triaged | |
| Priority | unspecified | medium | ||
| Alexander Sosedkin | 2021-09-15 10:50:11 UTC | Doc Type | If docs needed, set a value | Bug Fix |
| Doc Text | Cause: crypto-policies used the wrong keyword to disable ChaCha20 cipher in openssl Consequence: ChaCha20 cipher usage in TLS 1.2 in openssl couldn't be disabled through crypto-policies Fix: `-CHACHA20` is used instead of `-CHACHA20-POLY1305` Result: crypto-policies can be used to disable ChaCha20 cipher usage in openssl for both TLS 1.2 and TLS 1.3 | |||
| CC | omoris | |||
| Alexander Sosedkin | 2021-09-23 09:54:42 UTC | Fixed In Version | crypto-policies-20210922-1.git6fb269b.el9 | |
| Status | NEW | MODIFIED | ||
| errata-xmlrpc | 2021-09-23 10:04:49 UTC | Status | MODIFIED | ON_QA |
| Ondrej Moriš | 2021-10-07 11:59:25 UTC | QA Contact | qe-baseos-security | omoris |
| Ondrej Moriš | 2021-10-07 12:43:58 UTC | Status | ON_QA | VERIFIED |
| Red Hat One Jira (issues.redhat.com) | 2022-03-29 16:26:33 UTC | Link ID | Red Hat Issue Tracker CRYPTO-6992 | |
| Ondrej Moriš | 2022-05-12 17:54:12 UTC | CC | jafiala | |
| Flags | needinfo?(jafiala) | |||
| Gabi Fialová | 2022-05-13 09:02:39 UTC | Docs Contact | jafiala | |
| CC | gfialova | |||
| Mirek Jahoda | 2022-05-13 09:43:34 UTC | Flags | needinfo?(jafiala) | |
| CC | mjahoda | |||
| Docs Contact | jafiala | kborole | ||
| Khushbu Borole | 2022-05-16 13:16:16 UTC | Doc Text | Cause: crypto-policies used the wrong keyword to disable ChaCha20 cipher in openssl Consequence: ChaCha20 cipher usage in TLS 1.2 in openssl couldn't be disabled through crypto-policies Fix: `-CHACHA20` is used instead of `-CHACHA20-POLY1305` Result: crypto-policies can be used to disable ChaCha20 cipher usage in openssl for both TLS 1.2 and TLS 1.3 | .`crypto-policies` now can disable `ChaCha20` cipher usage Previously, the `crypto-policies` package used a wrong keyword to disable the `ChaCha20` cipher in OpenSSL. Consequently, you could not disable `ChaCha20` for the TLS 1.2 protocol in OpenSSL through `crypto-policies`. With this update, the `-CHACHA20` keyword is used instead of `-CHACHA20-POLY1305`. As a result, you now can use the cryptographic policies for disabling `ChaCha20` cipher usage in OpenSSL for TLS 1.2 and TLS 1.3. |
| errata-xmlrpc | 2022-05-17 00:50:06 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2022-05-17 15:54:31 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2022-05-17 15:54:31 UTC | |||
| errata-xmlrpc | 2022-05-17 15:54:42 UTC | Link ID | Red Hat Product Errata RHBA-2022:3953 |
Back to bug 2004207