Bug 1724250

Summary:	Make TLS 1.3 work in FIPS mode [rhel-8]
Product:	Red Hat Enterprise Linux 8	Reporter:	Alicja Kario <hkario>
Component:	nss	Assignee:	nss-nspr-maint <nss-nspr-maint>
Status:	CLOSED ERRATA	QA Contact:	Ivan Nikolchev <inikolch>
Severity:	medium	Docs Contact:	Mirek Jahoda <mjahoda>
Priority:	high
Version:	8.0	CC:	ascheel, dueno, fedoraproject, inikolch, jwright, mhonek, mjahoda, pasik, ssorce, szidek
Target Milestone:	rc	Keywords:	Triaged, ZStream
Target Release:	8.0
Hardware:	Unspecified
OS:	Unspecified
Whiteboard:
Fixed In Version:	nss-3.53.1-6.el8_2	Doc Type:	Known Issue
Doc Text:	.TLS 1.3 does not work in NSS in FIPS mode TLS 1.3 is not supported on systems working in FIPS mode. As a result, connections that require TLS 1.3 for interoperability do not function on a system working in FIPS mode. To enable the connections, disable the system's FIPS mode or enable support for TLS 1.2 in the peer.	Story Points:	---
Clone Of:
Clones:	1724251 (view as bug list)		Environment:
Last Closed:	2020-08-03 13:01:31 UTC	Type:	Bug
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:
Bug Depends On:	1809549
Bug Blocks:	1723586, 1724251, 1739559, 1765268, 2144487

Description Alicja Kario 2019-06-26 14:58:18 UTC

Description of problem:
Because of compliance reasons (see bug 1709796) TLS 1.3 is unavailable in FIPS mode.

fix this issue and allow use of TLS 1.3 in FIPS mode

Comment 8 Alicja Kario 2020-03-03 16:08:29 UTC

*** Bug 1723586 has been marked as a duplicate of this bug. ***

Comment 15 errata-xmlrpc 2020-08-03 13:01:31 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:3280