614531 – Add support for PKCS#8 encoded PEM RSA private key files

Bug 614531 - Add support for PKCS#8 encoded PEM RSA private key files

Summary: Add support for PKCS#8 encoded PEM RSA private key files

Status:	CLOSED DUPLICATE of bug 631000
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	nss
Sub Component:	(Show other bugs)
Version:	6.0
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Elio Maldonado Batiz
QA Contact:	BaseOS QE Security Team
Docs Contact:
URL:
Whiteboard:
Keywords:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2010-07-14 17:02 UTC by Rich Megginson
Modified:	2010-10-14 21:23 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2010-10-14 21:23:39 UTC
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
0001-Add-support-for-PKCS-8-encoded-private-keys.patch (8.49 KB, patch) 2010-07-14 17:02 UTC, Rich Megginson	no flags	Details \| Diff
0001-Do-not-define-SEC_SkipTemplate.patch (1.04 KB, patch) 2010-07-14 17:02 UTC, Rich Megginson	no flags	Details \| Diff
patch for spec file (2.88 KB, patch) 2010-07-14 17:02 UTC, Rich Megginson	no flags	Details \| Diff
Add an attachment (proposed patch, testcase, etc.)

Description Rich Megginson 2010-07-14 17:02:02 UTC

Created attachment 431844 [details]
0001-Add-support-for-PKCS-8-encoded-private-keys.patch

These are PEM files which in ASCII begin with the header

BEGIN PRIVATE KEY

The code already supports PKCS#1 format BEGIN RSA PRIVATE KEY but the openssl req -x509 tool creates private keys with the BEGIN PRIVATE KEY format.

There is a second patch attached - with mock and the latest RHEL-6 bits, nss did not build because SEC_SkipTemplate is defined more than once.  Not sure why we don't see this problem with the regular RHEL-6 builds in brew, so I don't know if it is needed, but I've attached it anyway.

Comment 1 Rich Megginson 2010-07-14 17:02:21 UTC

Created attachment 431845 [details]
0001-Do-not-define-SEC_SkipTemplate.patch

Comment 2 Rich Megginson 2010-07-14 17:02:43 UTC

Created attachment 431846 [details]
patch for spec file

Comment 4 Elio Maldonado Batiz 2010-10-14 21:23:39 UTC


*** This bug has been marked as a duplicate of bug 631000 ***

Note You need to log in before you can comment on or make changes to this bug.