Bug 631000 - rhel6 openssl creates PKCS#8 encoded PEM RSA private key files, nss can't read them
Summary: rhel6 openssl creates PKCS#8 encoded PEM RSA private key files, nss can't rea...
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: nss
Version: 6.0
Hardware: All
OS: Linux
Target Milestone: rc
: 6.1
Assignee: Elio Maldonado Batiz
QA Contact: Aleš Mareček
: 614531 630102 (view as bug list)
Depends On: 630102
TreeView+ depends on / blocked
Reported: 2010-09-07 15:16 UTC by Dennis Gilmore
Modified: 2016-08-22 20:40 UTC (History)
8 users (show)

Fixed In Version: nss-3.12.9-1.el6
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2011-05-19 14:03:31 UTC
Target Upstream Version:

Attachments (Terms of Use)

System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2011:0692 0 normal SHIPPED_LIVE nspr, nss, nss-softokn, and nss-util bug fix and enhancement update 2011-05-19 09:37:17 UTC

Description Dennis Gilmore 2010-09-07 15:16:28 UTC
Description of problem:

RHEL 6's openssl creates PKCS#8 encoded PEM RSA private key files.

nss can not read them,  it breaks using ssl cert auth with curl for instance.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. get ssl cert from FAS (Fedora Account System)
2. try and upload new sources to lookaside cache
Actual results:
Fails with ssl error

Expected results:
sources to be uploaded

Additional info:

This has been fixed in Fedora

Comment 2 Elio Maldonado Batiz 2010-09-10 17:42:08 UTC
(In reply to comment #0) 
> This has been fixed in Fedora
Yes, and the associated Fedora bug was cloned for RHEL-6 as

Comment 3 Elio Maldonado Batiz 2010-10-14 21:23:40 UTC
*** Bug 614531 has been marked as a duplicate of this bug. ***

Comment 4 Elio Maldonado Batiz 2010-10-14 21:24:49 UTC
*** Bug 630102 has been marked as a duplicate of this bug. ***

Comment 14 errata-xmlrpc 2011-05-19 14:03:31 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Comment 15 David Woodhouse 2016-08-22 20:40:13 UTC
Works for unencrypted PKCS#8 keys. Doesn't seem to work if they have a passphrase...

Note You need to log in before you can comment on or make changes to this bug.