Bug 2164847 - [RFE] Ability to disable non-etm MACs
Summary: [RFE] Ability to disable non-etm MACs
Keywords:
Status: NEW
Alias: None
Product: Fedora
Classification: Fedora
Component: crypto-policies
Version: rawhide
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: ---
Assignee: Red Hat Crypto Team
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
: 2138540 (view as bug list)
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2023-01-26 16:16 UTC by Ravindra Patil
Modified: 2023-07-24 12:56 UTC (History)
8 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Type: Bug
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Gitlab redhat-crypto fedora-crypto-policies issues 40 0 None opened Can't disable non-EtM MACs 2023-01-31 10:56:50 UTC
Red Hat Issue Tracker FC-814 0 None None None 2023-04-25 13:22:06 UTC

Comment 2 xspielinbox+redhat 2023-01-30 22:04:31 UTC 
This issue also exists in RHEL 9 and Fedora 37.
The lack of this feature currently prevents me from using the system-wide crypto-policies.

However, I think that a system-wide crypto-policy is great and strongly needed and therefore would be very happy, if this could get resolved.
How could one potentially help with that?
Comment 3 Alexander Sosedkin 2023-01-31 10:56:33 UTC 
(replied in upstream discussion in order to keep the discussion in one place: https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/issues/40)
Comment 4 Alexander Sosedkin 2023-03-28 13:16:20 UTC 
*** Bug 2138540 has been marked as a duplicate of this bug. ***
Comment 5 Alexander Sosedkin 2023-04-25 13:20:05 UTC 
Converting to Fedora bug, because I do want to address this request one day, but I don't have a clear way forward, and whatever the solution will be, it's unlikely to be ported to even RHEL-9 at this point, let alone 8. For them, opting out of crypto-policies is the supported solution.
Note You need to log in before you can comment on or make changes to this bug.