From Fedora Project Wiki
No edit summary
No edit summary
Line 17: Line 17:
|Kerberos || krb5 || https://bugzilla.redhat.com/show_bug.cgi?id=1225792 || ||
|Kerberos || krb5 || https://bugzilla.redhat.com/show_bug.cgi?id=1225792 || ||
|-
|-
|DNSSEC || BIND || https://bugzilla.redhat.com/show_bug.cgi?id=1179925 || F23 || Ongoing work
|DNSSEC || BIND || https://bugzilla.redhat.com/show_bug.cgi?id=1179925 || F23 || Completed; scheduled for F23
|}
|}

Revision as of 09:16, 28 May 2015

The following table helps track the status of System wide crypto policies deployment within Fedora. The current deployment is restricted on SSL/TLS libraries, but the greater idea is to extend them to all applications which involve crypto. If you believe some existing crypto subsystem can benefit of them, contact me or open an issue in [1] for it.

Functionality Software involved Tracker bugs Planned for Status
SSL/TLS gnutls https://bugzilla.redhat.com/show_bug.cgi?id=1179209 F21 Full policy support in F21.
openssl https://bugzilla.redhat.com/show_bug.cgi?id=1179209 F21 Partial policy support (ciphersuites only) using custom patch in F21.

There is Upstream bug for incorporation. More complete support planned after upstream includes the proposed changes.

NSS https://bugzilla.redhat.com/show_bug.cgi?id=1157720 F?? (was F22) Under upstream review
Java
SSH openssh https://bugzilla.redhat.com/show_bug.cgi?id=1225752
Kerberos krb5 https://bugzilla.redhat.com/show_bug.cgi?id=1225792
DNSSEC BIND https://bugzilla.redhat.com/show_bug.cgi?id=1179925 F23 Completed; scheduled for F23