rpms / nss

Clone
Source Code
GIT

Blame SOURCES/nss-3.79-pkcs12-fips-defaults.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c8 c8-beta c8-sig-altarch-armhfp c8s c9 c9-beta
  1.   ea84afce14bbb19676f7917a6e81bd52f9769862
  2.   SOURCES
  3.   nss-3.79-pkcs12-fips-defaults.patch
Blob History Raw
ea84af 
diff -up ./cmd/pk12util/pk12util.c.pkcs12_fips_defaults ./cmd/pk12util/pk12util.c
ea84af 
--- ./cmd/pk12util/pk12util.c.pkcs12_fips_defaults	2022-07-20 13:40:24.152212683 -0700
ea84af 
+++ ./cmd/pk12util/pk12util.c	2022-07-20 13:42:40.031094190 -0700
ea84af 
@@ -1146,6 +1146,11 @@ main(int argc, char **argv)
ea84af 
         goto done;
ea84af 
     }
ea84af
ea84af 
+    if (PK11_IsFIPS()) {
ea84af 
+        cipher =  SEC_OID_AES_256_CBC;
ea84af 
+        certCipher =  SEC_OID_AES_128_CBC;
ea84af 
+    }
ea84af 
+
ea84af 
     if (pk12util.options[opt_Cipher].activated) {
ea84af 
         char *cipherString = pk12util.options[opt_Cipher].arg;
ea84af
ea84af 
@@ -1160,9 +1165,6 @@ main(int argc, char **argv)
ea84af 
         }
ea84af 
     }
ea84af
ea84af 
-    if (PK11_IsFIPS()) {
ea84af 
-        certCipher =  SEC_OID_UNKNOWN;
ea84af 
-    }
ea84af 
     if (pk12util.options[opt_CertCipher].activated) {
ea84af 
         char *cipherString = pk12util.options[opt_CertCipher].arg;
ea84af

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation