freeipa

IntenseWebs/freeipa

Fork 0

mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00

Commit Graph

Author	SHA1	Message	Date
Robbie Harwood	bffcef6bbd	Log errors from NSS during FIPS OTP key import Signed-off-by: Robbie Harwood <rharwood@redhat.com> Reviewed-By: Christian Heimes <cheimes@redhat.com>	2018-03-14 13:05:17 -04:00
Nathaniel McCallum	c9c58f2d35	Fix OTP validation in FIPS mode NSS doesn't allow keys to be loaded directly in FIPS mode. To work around this, we encrypt the input key using an ephemeral key and then unwrap the encrypted key. https://pagure.io/freeipa/issue/7168 Reviewed-By: Rob Crittenden <rcritten@redhat.com>	2018-03-12 13:29:19 -04:00
Nathaniel McCallum	bdccb0c721	Preliminary refactoring of libotp files There are no major changes in this commit other than changing filenames and symbols to have consistent namespaces. This prepares for larger changes to come in subsequent commits. Reviewed-By: Thierry Bordaz <tbordaz@redhat.com>	2014-12-03 08:48:56 +01:00

Author

SHA1

Message

Date

Robbie Harwood

bffcef6bbd

Log errors from NSS during FIPS OTP key import

Signed-off-by: Robbie Harwood <rharwood@redhat.com>
Reviewed-By: Christian Heimes <cheimes@redhat.com>

2018-03-14 13:05:17 -04:00

Nathaniel McCallum

c9c58f2d35

Fix OTP validation in FIPS mode

NSS doesn't allow keys to be loaded directly in FIPS mode. To work around
this, we encrypt the input key using an ephemeral key and then unwrap the
encrypted key.

https://pagure.io/freeipa/issue/7168

Reviewed-By: Rob Crittenden <rcritten@redhat.com>

2018-03-12 13:29:19 -04:00

Nathaniel McCallum

bdccb0c721

Preliminary refactoring of libotp files

There are no major changes in this commit other than changing filenames
and symbols to have consistent namespaces. This prepares for larger
changes to come in subsequent commits.

Reviewed-By: Thierry Bordaz <tbordaz@redhat.com>

2014-12-03 08:48:56 +01:00

3 Commits