Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-36659

OpenSSL can't create PKCS #12 files in FIPS compliant way

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • rhel-10.0.beta
    • openssl
    • None
    • sst_security_crypto
    • ssg_security
    • False
    • Hide

      None

      Show
      None
    • All

      OpenSSL should create PKCS #12 that are FIPS compliant by default: use the PBMAC1 for the PKCS #12 files MAC.

      We should support reading files like this in normal mode, have ability to create them in normal mode, but probably not create them by default in normal mode.

            dbelyavs@redhat.com Dmitry Belyavskiy
            hkario@redhat.com Hubert Kario
            Dmitry Belyavskiy Dmitry Belyavskiy
            SSG Security QE SSG Security QE
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: