Bug 1669180

Summary: x25519 allowed in FIPS mode
Product: Red Hat Enterprise Linux 7 Reporter: Alex Scheel <ascheel>
Component: jssAssignee: Alex Scheel <ascheel>
Status: CLOSED ERRATA QA Contact: Asha Akkiangady <aakkiang>
Severity: urgent Docs Contact:
Priority: high    
Version: 7.6CC: ascheel, dpunia, mharmsen, msauton, nss-nspr-maint, qe-baseos-security
Target Milestone: rcKeywords: TestCaseProvided, ZStream
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: jss-4.4.6-1.el7 Doc Type: Bug Fix
Doc Text:
Cause: x25519 was incorrectly enabled in FIPS mode TLS handshakes due to an open NSS bug. Result: x25519 is now disabled in FIPS mode TLS handshakes for programs using JSS.
 Story Points: ---
Clone Of: 1667568
: 1671244 (view as bug list) Environment:
Last Closed: 2019-08-06 13:06:56 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1667568, 1728260    
Bug Blocks: 1671244    

Comment 9 errata-xmlrpc 2019-08-06 13:06:56 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:2219