Bug 614531

Summary: Add support for PKCS#8 encoded PEM RSA private key files
Product: Red Hat Enterprise Linux 6 Reporter: Rich Megginson <rmeggins>
Component: nssAssignee: Elio Maldonado Batiz <emaldona>
Status: CLOSED DUPLICATE QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: medium Docs Contact:
Priority: low    
Version: 6.0CC: dpal
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2010-10-14 21:23:39 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
0001-Add-support-for-PKCS-8-encoded-private-keys.patch
none
0001-Do-not-define-SEC_SkipTemplate.patch
none
patch for spec file none

Description Rich Megginson 2010-07-14 17:02:02 UTC
Created attachment 431844 [details]
0001-Add-support-for-PKCS-8-encoded-private-keys.patch

These are PEM files which in ASCII begin with the header

BEGIN PRIVATE KEY

The code already supports PKCS#1 format BEGIN RSA PRIVATE KEY but the openssl req -x509 tool creates private keys with the BEGIN PRIVATE KEY format.

There is a second patch attached - with mock and the latest RHEL-6 bits, nss did not build because SEC_SkipTemplate is defined more than once.  Not sure why we don't see this problem with the regular RHEL-6 builds in brew, so I don't know if it is needed, but I've attached it anyway.

Comment 1 Rich Megginson 2010-07-14 17:02:21 UTC
Created attachment 431845 [details]
0001-Do-not-define-SEC_SkipTemplate.patch

Comment 2 Rich Megginson 2010-07-14 17:02:43 UTC
Created attachment 431846 [details]
patch for spec file

Comment 4 Elio Maldonado Batiz 2010-10-14 21:23:39 UTC

*** This bug has been marked as a duplicate of bug 631000 ***