Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CRMFPopClient on FIPS environment #4620

Merged
merged 1 commit into from
Nov 27, 2023
Merged

Fix CRMFPopClient on FIPS environment #4620

merged 1 commit into from
Nov 27, 2023

Conversation

fmarco76
Copy link
Member

When FIPS is enabled RSA key generation cannot have both temporary and sensitive to false.

Since temporary is defined from a command option the sensitive is set to null so the default for the environment will be used (true if FIPS is enabled and false if FIPS is disabled).

Fix BZ Bug 2250716

@fmarco76
Fix CRMFPopClient on FIPS environment
875e5c8 
When FIPS is enabled RSA key generation cannot have both temporary and
sensitive to false.

Since temporary is defined from a command option the sensitive is set to
null so the default for the environment will be used (true if FIPS is
enabled and false if FIPS is disabled).

Fix BZ Bug 2250716
@fmarco76 fmarco76 requested a review from edewata November 27, 2023 11:09
@sonarqubecloud SonarQubeCloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

0.0% 0.0% Coverage
0.0% 0.0% Duplication

edewata
edewata approved these changes Nov 27, 2023
View reviewed changes
Copy link
Contributor

@edewata edewata left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not an expert, but it looks good to me. Feel free to merge if you're pretty sure about this change, or check with @ladycfu or @jmagne.

@fmarco76
Copy link
Member Author

Thanks @edewata. The fix is similar to #4604 and this temporary/sensitive has been discussed in other places. I am merging for now

@fmarco76 fmarco76 merged commit 0753e8d into dogtagpki:master Nov 27, 2023
129 of 132 checks passed
@fmarco76 fmarco76 deleted the CRMFPopFix branch November 27, 2023 14:33
@ladycfu
Copy link
Contributor

ladycfu commented Nov 29, 2023

HI @fmarco76 sorry for the late reply. If this is tested to work with both HSMs that we claim to support then it should be fine. Thanks.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@edewata edewata edewata approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@fmarco76 @ladycfu @edewata