Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-112395

remove workaround for allowing PQ signatures in all rpm-sequoia crypto-policies

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • rhel-10.2
    • rhel-10.1
    • crypto-policies
    • None
    • rhel-security-crypto-spades
    • 12
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • Yes
    • None
    • Hide

      AC1) DRAFT: PQC (MLDSA and MLKEM) is enabled in all base policy except FIPS for sequoia backends.

      AC2) Note about force-enabling them "to work around the current rpm-sequoia inability to skip algorithms it does not trust" is removed.

      Show
      AC1) DRAFT: PQC (MLDSA and MLKEM) is enabled in all base policy except FIPS for sequoia backends. AC2) Note about force-enabling them "to work around the current rpm-sequoia inability to skip algorithms it does not trust" is removed.
    • None
    • None
    • Enhancement
    • Hide
      Feature, enhancement:
      Reason:
      Result:
      Show
      Feature, enhancement: Reason: Result:
    • Proposed
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      Once RHEL-112394 is fixed, remove the workaround we needed in RHEL-10.1.

              asosedki@redhat.com Alexander Sosedkin
              szidek@redhat.com Stanislav Zidek
              Alexander Sosedkin Alexander Sosedkin
              Ondrej Moris Ondrej Moris
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: