Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
Bug 704595 - lib crmf uses a hard-coded maximum size of 2048 for wrapped private keys
lib crmf uses a hard-coded maximum size of 2048 for wrapped private keys
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: nss (Show other bugs)
5.7
Unspecified Unspecified
urgent Severity urgent
: rc
: ---
Assigned To: Elio Maldonado Batiz
Aleš Mareček
: ZStream
: 757917 (view as bug list)
Depends On: 703656 703658
Blocks: 445047 705120 710649 757917 758797
  Show dependency treegraph
 
Reported: 2011-05-13 13:21 EDT by Elio Maldonado Batiz
Modified: 2012-11-19 07:57 EST (History)
11 users (show)

See Also:
Fixed In Version: nss-3.12.8-4.el5
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 703658
: 705120 757917 (view as bug list)
Environment:
Last Closed: 2012-02-21 01:49:14 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)
the patch from upstream (1.65 KB, patch)
2011-06-03 13:54 EDT, Elio Maldonado Batiz
no flags Details | Diff
patch ajusted for RHEL 5 to add for the missing macro definition if needed (1.78 KB, patch)
2011-06-03 14:01 EDT, Elio Maldonado Batiz
rrelyea: review+
Details | Diff


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2012:0291 normal SHIPPED_LIVE nss and nspr bug fix update 2012-02-20 10:05:38 EST

  None (edit)
Comment 5 Elio Maldonado Batiz 2011-06-03 13:54:40 EDT
Created attachment 502875 [details]
the patch from upstream

Not directely applicable with RHEL 5. Will attach the modified version next.
Comment 6 Elio Maldonado Batiz 2011-06-03 13:58:43 EDT
The patch need to be adjusted as follows:
+@@ -46,11 +46,46 @@
  #include "secasn1.h"
  #include "crmfit.h"
  #include "secerr.h"
 +#include "blapit.h"
++
++/* RSA_MAX_MODULUS_BITS is not defined in older versions 
++ * of blapit.h such as the one from nss 3.11.5 
++ */
++#ifndef RSA_MAX_MODULUS_BITS
++#define RSA_MAX_MODULUS_BITS  8192
++#endif
++#define MAX_WRAPPED_KEY_LEN       RSA_MAX_MODULUS_BITS
Comment 7 Elio Maldonado Batiz 2011-06-03 14:01:49 EDT
Created attachment 502878 [details]
patch ajusted for RHEL 5 to add for the missing macro definition if needed
Comment 8 Bob Relyea 2011-06-03 14:50:47 EDT
Comment on attachment 502878 [details]
patch ajusted for RHEL 5 to add for the missing macro definition if needed

r+ since it the same patch I r+ upstream;).

bob
Comment 11 Ludek Smid 2011-11-29 03:43:09 EST
*** Bug 757917 has been marked as a duplicate of this bug. ***
Comment 18 errata-xmlrpc 2012-02-21 01:49:14 EST
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2012-0291.html

Note You need to log in before you can comment on or make changes to this bug.