You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Resolve: pkispawn does not change default ecc key size from nistp256 when nistp384 is specified in spawn config
Ticket 2552.
This fix turned out simple. The client was correctly setting the required data, but it was putting the curveName in the
"keySize" field of the SystemCertData object sent to the back end. The configuration routine was trying to find the name in the "curveName" field when its really in the "keySize" field. This issue is restricted to the ECC case. It is fine to simply fix this in the server, since the "keySize" is a string anyway and it makes decent sense.
Resolve: pkispawn does not change default ecc key size from nistp256 when nistp384 is specified in spawn config
Ticket 2552.
This fix turned out simple. The client was correctly setting the required data, but it was putting the curveName in the
"keySize" field of the SystemCertData object sent to the back end. The configuration routine was trying to find the name in the "curveName" field when its really in the "keySize" field. This issue is restricted to the ECC case. It is fine to simply fix this in the server, since the "keySize" is a string anyway and it makes decent sense.
This issue was migrated from Pagure Issue #2552. Originally filed by dsirrine (@dsirrine) on 2016-11-22 00:03:38:
When creating ECC CA, pkispawn does not change default key size from nistp256.
This causes certificates created with the SHA384withEC algorithm but creates it
with the nistp256 key size.
Steps to Reproduce:
Actual results:
Expected results:
The text was updated successfully, but these errors were encountered: