Bug 614532
| Summary: | Add support for PKCS#8 encoded PEM RSA private key files | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Rich Megginson <rmeggins> | ||||||||
| Component: | nss | Assignee: | Elio Maldonado Batiz <emaldona> | ||||||||
| Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||||
| Severity: | medium | Docs Contact: | |||||||||
| Priority: | low | ||||||||||
| Version: | 14 | CC: | emaldona, kdudka, kengert, rcritten | ||||||||
| Target Milestone: | --- | ||||||||||
| Target Release: | --- | ||||||||||
| Hardware: | All | ||||||||||
| OS: | Linux | ||||||||||
| Whiteboard: | |||||||||||
| Fixed In Version: | nss-3.12.7-4.fc14 | Doc Type: | Bug Fix | ||||||||
| Doc Text: | Story Points: | --- | |||||||||
| Clone Of: | |||||||||||
| : | 630102 (view as bug list) | Environment: | |||||||||
| Last Closed: | 2010-08-20 01:31:31 UTC | Type: | --- | ||||||||
| Regression: | --- | Mount Type: | --- | ||||||||
| Documentation: | --- | CRM: | |||||||||
| Verified Versions: | Category: | --- | |||||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||||
| Embargoed: | |||||||||||
| Bug Depends On: | |||||||||||
| Bug Blocks: | 630102 | ||||||||||
| Attachments: |
|
||||||||||
Created attachment 431859 [details]
0001-Do-not-define-SEC_SkipTemplate.patch
Created attachment 431860 [details]
patch for spec file
I don't know if you want these patches applied to current Fedora versions - the git patch flies should apply cleanly, don't know about the spec file patch. This bug appears to have been reported against 'rawhide' during the Fedora 14 development cycle. Changing version to '14'. More information and reason for this action is here: http://fedoraproject.org/wiki/BugZappers/HouseKeeping These two patches have been accepted upstream. nss-3.12.6-11.fc14 has been submitted as an update for Fedora 14. http://admin.fedoraproject.org/updates/nss-3.12.6-11.fc14 nss-3.12.6-11.fc14 has been pushed to the Fedora 14 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update nss'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/nss-3.12.6-11.fc14 nss-3.12.6-11.fc12 has been submitted as an update for Fedora 12. http://admin.fedoraproject.org/updates/nss-3.12.6-11.fc12 nss-3.12.6-11.fc13 has been submitted as an update for Fedora 13. http://admin.fedoraproject.org/updates/nss-3.12.6-11.fc13 My bad, I discovered that the nss-pem tar ball uploaded to the look-aside cache has the same contents as the one it was intended to replace. Rather than making and uploading a new tar ball I'll just apply the patches via the spec file. New builds are coming, with Rawhide first. nss-3.12.6-11.fc13 has been pushed to the Fedora 13 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update nss'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/nss-3.12.6-11.fc13 nss-3.12.6-12.fc14 has been submitted as an update for Fedora 14. http://admin.fedoraproject.org/updates/nss-3.12.6-12.fc14 nss-3.12.6-12.fc13 has been submitted as an update for Fedora 13. http://admin.fedoraproject.org/updates/nss-3.12.6-12.fc13 nss-3.12.6-12.fc12 has been submitted as an update for Fedora 12. http://admin.fedoraproject.org/updates/nss-3.12.6-12.fc12 nss-3.12.6-12.fc13 has been pushed to the Fedora 13 stable repository. If problems still persist, please make note of it in this bug report. nss-3.12.7-3.fc14,nss-softokn-3.12.7-3.fc14,nss-util-3.12.7-2.fc14,nspr-4.8.6-1.fc14 has been submitted as an update for Fedora 14. https://admin.fedoraproject.org/updates/nss-3.12.7-3.fc14,nss-softokn-3.12.7-3.fc14,nss-util-3.12.7-2.fc14,nspr-4.8.6-1.fc14 nss-3.12.6-12.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report. nss-3.12.7-4.fc14 has been submitted as an update for Fedora 14. https://admin.fedoraproject.org/updates/nss-3.12.7-4.fc14 nss-3.12.7-4.fc14, nspr-4.8.6-1.fc14, nss-util-3.12.7-2.fc14, nss-softokn-3.12.7-3.fc14 has been pushed to the Fedora 14 stable repository. If problems still persist, please make note of it in this bug report. |
Created attachment 431849 [details] 0001-Add-support-for-PKCS-8-encoded-private-keys.patch These are PEM files which in ASCII begin with the header BEGIN PRIVATE KEY The code already supports PKCS#1 format BEGIN RSA PRIVATE KEY but the openssl req -x509 tool creates private keys with the BEGIN PRIVATE KEY format. There is a second patch attached - with mock, nss did not build because SEC_SkipTemplate is defined more than once. Not sure why we don't see this problem with the regular builds, so I don't know if it is needed, but I've attached it anyway.