IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-23 07:33:27 -06:00
Code Issues Packages Projects Releases Wiki Activity
557f0a5639
freeipa/ipaclient
History
Rob Crittenden c3d228d4a3 Vault: add additional fallback to RSA-OAEP wrapping algo 
There is a fallback when creating the wrapping key but one was missing
when trying to use the cached transport_cert.

This allows, along with forcing keyWrap.useOAEP=true, vault creation
on an nCipher HSM.

This can be seen in HSMs where the device doesn't support the
PKCS#1 v1.5 mechanism. It will error out with either "invalid
algorithm" or CKR_FUNCTION_FAILED.

Related: https://pagure.io/freeipa/issue/9191

Signed-off-by: Rob Crittenden <rcritten@redhat.com>
Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
2024-03-05 15:46:01 -05:00
..
install Compatibility fix for PyCA cryptography 42.0.0 2024-01-24 14:54:24 +01:00
plugins Vault: add additional fallback to RSA-OAEP wrapping algo 2024-03-05 15:46:01 -05:00
remote_plugins pylint: fix errors 2024-01-09 08:40:47 +01:00
__init__.py Split ipa-client/ into ipaclient/ (Python library) and client/ (C, scripts) 2016-01-27 12:09:02 +01:00
__main__.py Use entry_points for ipa CLI 2017-04-11 13:29:50 +02:00
discovery.py Unify access to FQDN 2020-10-26 17:11:19 +11:00
frontend.py pylint: remove unneeded disable=unused-private-member 2023-01-10 08:30:58 +01:00
Makefile.am Build: Makefiles for Python packages 2016-11-09 13:08:32 +01:00
setup.cfg Port all setup.py to setuptools 2016-10-20 18:43:37 +02:00
setup.py Remove support for csrgen 2021-01-21 13:51:45 +01:00