Project

Profile

Help

Issue #8317

closed

Allow the auth private key size to be configurable

Added by mprahl over 1 year ago. Updated over 1 year ago.

Status:
MODIFIED
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
No
Groomed:
No
Sprint Candidate:
No
Tags:
Pulp 2
Sprint:
Quarter:

Description

Clients such as Fedora 33 have a default OpenSSL configuration that doesn't allow the usage of 1024 bit keys. To allow for backwards compatibility, allow this value to be configurable on the Pulp side.

See more information at: https://fedoraproject.org/wiki/Changes/StrongCryptoSettings2

Actions #1

Updated by mprahl over 1 year ago

The following PR should address this: https://github.com/pulp/pulp/pull/4018

Added by mprahl over 1 year ago

Revision d92c5424

Set the auth private key size to be 2048 bits

Clients such as Fedora 33 have a default OpenSSL configuration that doesn't allow the usage of 1024 bit keys.

See more information at: https://fedoraproject.org/wiki/Changes/StrongCryptoSettings2

closes #8317

Actions #2

Updated by mprahl over 1 year ago

  • Status changed from NEW to MODIFIED
Actions #3

Updated by ipanova@redhat.com over 1 year ago

  • Tags Pulp 2 added

Added by mprahl over 1 year ago

Revision 308d1644

Sign authentication certificates using SHA256

Clients such as Fedora 33 have a default OpenSSL configuration that doesn't allow the usage of SHA1 signed certificates.

See more information at: https://fedoraproject.org/wiki/Changes/StrongCryptoSettings2

closes #8317

Also available in: Atom PDF