Bug 1121658

Summary: [RFE] Support RFC 5649: Advanced Encryption Standard (AES) Key Wrap with Padding Algorithm
Product: [Fedora] Fedora Reporter: Petr Spacek <pspacek>
Component: opensslAssignee: Tomas Mraz <tmraz>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 21CC: arubin, dpal, mkosek, qe-baseos-security, sgrubb, tmraz
Target Milestone: ---Keywords: FutureFeature
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: openssl-1.0.1i-4.fc21 Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: 1119738 Environment:
Last Closed: 2014-09-23 04:42:19 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1119738    
Bug Blocks: 998522, 1115294, 1249775, 2084180    

Description Petr Spacek 2014-07-21 13:44:37 UTC 
+++ This bug was initially created as a clone of Bug #1119738 +++

Description of problem:
Support for RFC 5649 is a requirement for DNSSEC support in FreeIPA.

Patches were sent upstream: http://rt.openssl.org/Ticket/Display.html?id=3434

--- Additional comment from Petr Spacek on 2014-07-21 10:05:17 CEST ---

Support was merged upstream. Please see upstream commit: https://github.com/openssl/openssl/commit/d31fed73e25391cd71a0de488d88724db78f6f8a
Comment 1 Petr Spacek 2014-07-21 13:45:34 UTC 
It would be nice to get also patches for F20 so we can have F20 COPR build. Thank you very much!
Comment 2 Petr Spacek 2014-08-15 16:07:16 UTC 
Do you have any update on this, Tomas? Can we rely on it for Fedora 21?
Comment 3 Fedora Update System 2014-09-11 13:55:40 UTC 
openssl-1.0.1i-4.fc21 has been submitted as an update for Fedora 21.
https://admin.fedoraproject.org/updates/openssl-1.0.1i-4.fc21
Comment 4 Fedora Update System 2014-09-11 22:11:50 UTC 
Package openssl-1.0.1i-4.fc21:
* should fix your issue,
* was pushed to the Fedora 21 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing openssl-1.0.1i-4.fc21'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2014-10694/openssl-1.0.1i-4.fc21
then log in and leave karma (feedback).
Comment 5 Fedora Update System 2014-09-23 04:42:19 UTC 
openssl-1.0.1i-4.fc21 has been pushed to the Fedora 21 stable repository.  If problems still persist, please make note of it in this bug report.