Red Hat Bugzilla – Bug 805640
Enhance PSM's key generation strategy with tokens/escrow
Last modified: 2014-03-16 21:33:37 EDT
RHCS requires the following bug to be fixed in RHEL 5.8:
This fix is critical for RHCS ECC functionality to work.
This bug requests that "patch v4" (r=rrelyea) from upstream bug
gets added to Firefox
(but I believe the relevant code lives in our xulrunner RPM package).
The full link to the patch is
This patch applies fine on the latest Firefox 10.x branch.
We propose that this patch gets added together with the next scheduled FF update (10.0.4) (sharing a single errata).
Created attachment 572018 [details]
Patch v4 from upstream (smaller context version)
This is the same patch as upstream, however, with less context (5 lines, not 50 lines, shortens the patch, increases likelyhood that patch will continue to apply).
If you need a risk assessment:
The patch is limited to changing code related to certificate key pair generation (which is only called when a user visits a CA's web page to apply for a certificate).
*** Bug 672316 has been marked as a duplicate of this bug. ***
Fixed in RHSA-2012:0515.