Bug 614531 – Add support for PKCS#8 encoded PEM RSA private key files

Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.

Bug 614531 - Add support for PKCS#8 encoded PEM RSA private key files

Summary:	Add support for PKCS#8 encoded PEM RSA private key files

Status:	CLOSED DUPLICATE of bug 631000

Aliases:	None

Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	nss (Show other bugs)
Sub Component:
Version:	6.0
Hardware:	All Linux

Priority	low Severity medium
Target Milestone:	rc
Target Release:	---
Assigned To:	Elio Maldonado Batiz
QA Contact:	BaseOS QE Security Team
Docs Contact:

URL:
Whiteboard:
Keywords:

Depends On:
Blocks:
	Show dependency tree / graph

Reported:	2010-07-14 13:02 EDT by Rich Megginson
Modified:	2010-10-14 17:23 EDT (History)
CC List:	1 user (show)

See Also:
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2010-10-14 17:23:39 EDT
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
0001-Add-support-for-PKCS-8-encoded-private-keys.patch (8.49 KB, patch) 2010-07-14 13:02 EDT, Rich Megginson	no flags	Details \| Diff
0001-Do-not-define-SEC_SkipTemplate.patch (1.04 KB, patch) 2010-07-14 13:02 EDT, Rich Megginson	no flags	Details \| Diff
patch for spec file (2.88 KB, patch) 2010-07-14 13:02 EDT, Rich Megginson	no flags	Details \| Diff
Add an attachment (proposed patch, testcase, etc.)

Groups: None (edit)

Description Rich Megginson 2010-07-14 13:02:02 EDT

Created attachment 431844 [details]
0001-Add-support-for-PKCS-8-encoded-private-keys.patch

These are PEM files which in ASCII begin with the header

BEGIN PRIVATE KEY

The code already supports PKCS#1 format BEGIN RSA PRIVATE KEY but the openssl req -x509 tool creates private keys with the BEGIN PRIVATE KEY format.

There is a second patch attached - with mock and the latest RHEL-6 bits, nss did not build because SEC_SkipTemplate is defined more than once.  Not sure why we don't see this problem with the regular RHEL-6 builds in brew, so I don't know if it is needed, but I've attached it anyway.

Comment 1 Rich Megginson 2010-07-14 13:02:21 EDT

Created attachment 431845 [details]
0001-Do-not-define-SEC_SkipTemplate.patch

Comment 2 Rich Megginson 2010-07-14 13:02:43 EDT

Created attachment 431846 [details]
patch for spec file

Comment 4 Elio Maldonado Batiz 2010-10-14 17:23:39 EDT


*** This bug has been marked as a duplicate of bug 631000 ***

Note You need to log in before you can comment on or make changes to this bug.