Bug 789762

Summary: do not hobble IDEA cipher in openssl as patent is now expired
Product: [Fedora] Fedora Reporter: g.trentalancia
Component: opensslAssignee: Tomas Mraz <tmraz>
Status: CLOSED RAWHIDE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: unspecified    
Version: 16CC: tmraz
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-02-13 08:34:28 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
Proposed patch for the "hobble-openssl" script to avoid disabling the IDEA cipher
none
Proposed new source package which does not disable the IDEA cipher
none
Proposed patch for the Fedora spec file to avoid disabling the IDEA cipher none

Description g.trentalancia 2012-02-12 21:01:39 UTC 
Description of problem:
The IDEA cipher in openssl used to be disabled due to a patent pending on the algorithm. Such patent is now expired and therefore the IDEA cipher could be potentially enabled. For further information on the IDEA patent filling, please see: https://ramps.uspto.gov/eram/getMaintFeesInfo.do?patentNum=5214703&applicationNum=07781235
Patents should now expire 20 years after the filling date.

Version-Release number of selected component (if applicable):
1.0.0g-1.fc16

How reproducible:
always (build from source or install binaries)

Steps to Reproduce:
1.
2.
3.
  
Actual results:
IDEA cipher is disabled

Expected results:
IDEA cipher could be enabled

Additional info:
A proposed patch for the hobble-openssl script is attached.
A proposed new package will be attached shortly.
Please double-check current relevant legislation for actual patent expiration.
Comment 1 g.trentalancia 2012-02-12 21:10:16 UTC 
Created attachment 561300 [details]
Proposed patch for the "hobble-openssl" script to avoid disabling the IDEA cipher
Comment 2 g.trentalancia 2012-02-12 21:12:44 UTC 
Created attachment 561301 [details]
Proposed new source package which does not disable the IDEA cipher
Comment 3 g.trentalancia 2012-02-12 21:14:19 UTC 
Created attachment 561302 [details]
Proposed patch for the Fedora spec file to avoid disabling the IDEA cipher

The patched Fedora spec file is already included in the attached revised source package.
Comment 4 g.trentalancia 2012-02-12 21:28:45 UTC 
Please note that the proposed source package has not been tested.
Comment 5 Tomas Mraz 2012-02-13 08:34:28 UTC 
This is already fixed in openssl-1.0.1-0.1.beta2 in rawhide. I do not want to do this change in F16.