rpms/crypto-policies
7
0
Fork 0
Code Issues Pull Requests Releases Activity
Systemwide crypto policies
41 Commits 8 Branches 50 Tags 190 KiB
RPM Spec 100%
410734bda5
Go to file
Alexander Sosedkin 410734bda5 Update from upstream (java, RSA in DEFAULT, SHA1 in LEGACY...) 
- nss: wire KYBER768 to XYBER768D00
- java: start controlling / disable DTLSv1.0
- java: disable anon ciphersuites, tying them to NULL
- java: respect more key size restrictions
- java: specify jdk.tls.namedGroups system property
- java: make hash, mac and sign more orthogonal
- fips-mode-setup: add another scary "unsupported"
- fips-mode-setup: flashy ticking warning upon use
- java: use and include jdk.disabled.namedCurves
- ec_min_size: introduce and use in java, default to 256
- java: stop specifying jdk.tls.namedGroups in javasystem
- java: drop unused javasystem backend
- openssh: make dss no longer enableble, support is dropped
- LEGACY: disable sign = *-SHA1
- DEFAULT: disable RSA key exchange
- nss: TLS-REQUIRE-EMS in FIPS

Resolves: RHEL-36300
Resolves: RHEL-50106
Resolves: RHEL-50464
Related: RHEL-18442
Related: RHEL-28848
Related: RHEL-45618
Related: RHEL-45620
Related: RHEL-5206
2024-07-26 11:38:30 +02:00
.gitignore RHEL 9.0.0 Alpha bootstrap 2020-10-14 23:21:50 +02:00
crypto-policies.spec Update from upstream (java, RSA in DEFAULT, SHA1 in LEGACY...) 2024-07-26 11:38:30 +02:00
gating.yaml Add RHEL gating configuration 2021-07-15 02:43:40 +02:00
sources Update from upstream (java, RSA in DEFAULT, SHA1 in LEGACY...) 2024-07-26 11:38:30 +02:00