Bug 614531

Summary:

Add support for PKCS#8 encoded PEM RSA private key files

Product:

Red Hat Enterprise Linux 6

Reporter:

Rich Megginson <rmeggins>

Component:

nss

Assignee:

Elio Maldonado Batiz <emaldona>

Status:

CLOSED DUPLICATE

QA Contact:

BaseOS QE Security Team <qe-baseos-security>

Severity:

medium

Docs Contact:

Priority:

low

Version:

6.0

CC:

dpal

Target Milestone:

Target Release:

---

Hardware:

All

OS:

Linux

Whiteboard:

Fixed In Version:

Doc Type:

Bug Fix

Doc Text:

Story Points:

---

Clone Of:

Environment:

Last Closed:

2010-10-14 17:23:39 EDT

Type:

---

Regression:

---

Mount Type:

---

Documentation:

---

CRM:

Verified Versions:

Category:

---

oVirt Team:

---

RHEL 7.3 requirements from Atomic Host:

Cloudforms Team:

---

Attachments:

Description	Flags
0001-Add-support-for-PKCS-8-encoded-private-keys.patch	none
0001-Do-not-define-SEC_SkipTemplate.patch	none
patch for spec file	none

Description Rich Megginson 2010-07-14 13:02:02 EDT

Created attachment 431844 [details]
0001-Add-support-for-PKCS-8-encoded-private-keys.patch

These are PEM files which in ASCII begin with the header

BEGIN PRIVATE KEY

The code already supports PKCS#1 format BEGIN RSA PRIVATE KEY but the openssl req -x509 tool creates private keys with the BEGIN PRIVATE KEY format.

There is a second patch attached - with mock and the latest RHEL-6 bits, nss did not build because SEC_SkipTemplate is defined more than once.  Not sure why we don't see this problem with the regular RHEL-6 builds in brew, so I don't know if it is needed, but I've attached it anyway.

Comment 1 Rich Megginson 2010-07-14 13:02:21 EDT

Created attachment 431845 [details]
0001-Do-not-define-SEC_SkipTemplate.patch

Comment 2 Rich Megginson 2010-07-14 13:02:43 EDT

Created attachment 431846 [details]
patch for spec file

Comment 4 Elio Maldonado Batiz 2010-10-14 17:23:39 EDT


*** This bug has been marked as a duplicate of bug 631000 ***