There is an old standard (PKCS12KDF) that is not compatible with fips.
PBMAC1 functionality (https://www.rfc-editor.org/rfc/rfc8018) will be
available in new versions of OpenSSL. There is a risk of incompatibility
with existing deployments.
Apart from the aforementioned workaround, another one is to run the command the
in no-fips mode.
** Changed in: openssl (Ubuntu)
Status: In Progress => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2107991
Title:
fips-updates openssl is broken for PKCS#12/p12 certs
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/2107991/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
