Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Normal
Fix Version/s: rhel-10.0.beta
Affects Version/s: rhel-10.0.beta
Component/s: nss
Labels:

Regression:
None
Severity:
None
Epic Link:
CRYPTO-12417
sprint_count:
1

Pool Team:

sst_security_crypto
Sub-System Group:

ssg_security

Dev Target Milestone:
24
Internal Target Milestone:
26
Story Points:
1
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Sprint:
Crypto24Q3

Acceptance Criteria:

Hide

AC1) When MD5 is allowed in NSS crypto-policies, it is not possible to create certificate when MD5 is chosen for signing

Show
AC1) When MD5 is allowed in NSS crypto-policies, it is not possible to create certificate when MD5 is chosen for signing
Preliminary Testing:
Pass
Test Link:
https://pkgs.devel.redhat.com/cgit/tests/nss/tree/Regression/bz1335915-Disable-the-MD5-as-a-signing-algorithm-in-NSS
Errata Link:
https://errata.engineering.redhat.com/advisory/136536
Gating Tests:

Not Needed
Test Coverage:

Automated

Release Note Type:
Unspecified Release Note Type - Unknown

Experience:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

Regression compared to https://bugzilla.redhat.com/show_bug.cgi?id=1926367

when policy override for MD5 is present, creating signatures signed with MD5 works

Using nss-3.97.0-1.el10

links to

RHBA-2024:136536 nss bug fix and enhancement update

Assignee:: Robert Relyea

Reporter:: Alicja Kario

Developer:: Robert Relyea

QA Contact:: Ondrej Moris

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2024/06/21 3:04 PM

Updated:: 2024/09/03 3:16 PM

Dev Target end:: 2024/08/12

Target end:: 2024/08/26