weblatebot / certmonger

Forked from certmonger 3 years ago
Clone
Source Code
GIT

e840b62 Verify that the AES-128 is used for encrypting the local CA

Authored and Committed by rcritten 2 years ago
raw patch tree parent
3 files changed. 20 lines added. 0 lines removed.
tests/026-local/expected.openssl1
file modified
+2 -0
tests/026-local/expected.openssl3
file modified
+2 -0
tests/026-local/run.sh
file modified
+16 -0 
    Verify that the AES-128 is used for encrypting the local CA
    
    OpenSSL by default used very old defaults, RC2-CBC and 3DES, for
    encryption. This resulted in a credential that was unusable if
    FIPS was enabled.
    
    Both values are now hardcoded to AES-128-CBC so that it is both
    more modern and will work in all situations. This tests that
    nothing has changed.
    
    Related: https://bugzilla.redhat.com/show_bug.cgi?id=1950132
    
    Signed-off-by: Rob Crittenden <rcritten@redhat.com>
file modified
+2 -0
file modified
+2 -0
file modified
+16 -0
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.