Uploaded image for project: 'CFEngine Community'
  1. CFEngine Community
  2. CFE-1856

Cfengine 3.6.5 and even older uses wrongly exponent for openssl

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Priority: High
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.7.0
    • Component/s: None
    • Labels:
      None

      Description

      The Exponent is 35. In FIPS mode, the exponent must be at least 65537 (#define RSA_F4) in openssl.

      I created patch for it we will have in SUSE (see the attachment) which should do exactly what is expected from it to be secure enough and make our SUSE QA happy

        Attachments

          Activity

            People

            Assignee:
            a10038 jimis (Dimitrios Apostolou)
            Reporter:
            scarabeus Tomáš Chvátal
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: