Bug 683368

Summary: [RFE] Support SHA2 based certificates
Product: Red Hat Enterprise Linux 5 Reporter: J.H.M. Dassen (Ray) <rdassen>
Component: curlAssignee: Kamil Dudka <kdudka>
Status: CLOSED DUPLICATE QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: medium Docs Contact:
Priority: medium    
Version: 5.6CC: mvadkert, prc, rbinkhor, tmraz
Target Milestone: rcKeywords: FutureFeature, Patch, Triaged
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-06-02 05:46:30 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 676384    
Bug Blocks: 554476    

Description J.H.M. Dassen (Ray) 2011-03-09 09:40:25 UTC 
What is the nature and description of the request?
Curl does not support sha2 certificates

Why does the customer need this?
"Our business justification is that we are securing our environments by adding
SSL to all of our web servers.  We do this using SHA2 based certificates.  And
now curl doesn't work.  So this is preventing us from securing our web servers
as we have to have curl work."

How would the customer like to achieve this?
A single line patch that would enable sha2 certificate support.
(http://sourceforge.net/tracker/?func=detail&atid=100976&aid=2825989&group_id=976)

Specify how Red Hat and the customer can test to confirm the requirement is
successfully implemented.

backport the patch.

Is there already an existing RFE upstream or in Red Hat bugzilla?
Yes, it's fixed in upstream.

How quickly does this need resolved?
RHEL5.8

Does this request meet the RHEL Inclusion criteria
Yes

List the affected packages
Curl

Would the customer be able to assist in testing this functionality if implemented?
Customer already tested the upstream version and it's working fine.
Comment 2 Kamil Dudka 2011-03-09 11:55:30 UTC 
upstream commits:

https://github.com/bagder/curl/commit/b347a7a
https://github.com/bagder/curl/commit/9b5c00a