-
Notifications
You must be signed in to change notification settings - Fork 24.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enable testing in FIPS140 JVM #31666
Merged
Merged
Commits on Jun 12, 2018
-
Configuration menu - View commit details
-
Copy full SHA for e294ff8 - Browse repository at this point
Copy the full SHA e294ff8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 3874a1d - Browse repository at this point
Copy the full SHA 3874a1dView commit details
Commits on Jun 13, 2018
-
Configuration menu - View commit details
-
Copy full SHA for 5f17449 - Browse repository at this point
Copy the full SHA 5f17449View commit details
Commits on Jun 15, 2018
-
Configuration menu - View commit details
-
Copy full SHA for 459734d - Browse repository at this point
Copy the full SHA 459734dView commit details
Commits on Jun 28, 2018
-
Ensure our tests can run in a FIPS JVM
JKS keystores cannot be used in a FIPS JVM as attempting to use one in order to init a KeyManagerFactory or a TrustManagerFactory is not allowed.( JKS keystore algorithms for private key encryption are not FIPS 140 approved) This commit replaces JKS keystores in our tests with the corresponding PEM encoded key and certificates both for key and trust configurations. Whenever it's not possible to refactor the test, i.e. when we are testing that we can load a JKS keystore, etc. we attempt to mute the test when we are running in FIPS 140 JVM. Testing for the JVM is naive and is based on the name of the security provider as we would control the testing infrastrtucture and so this would be reliable enough. Other cases of tests being muted are the ones that involve custom TrustStoreManagers or KeyStoreManagers, null TLS Ciphers and the SAMLAuthneticator class as we cannot sign XML documents in the way we were doing. SAMLAuthenticator tests in a FIPS JVM can be reenabled with precomputed and signed SAML messages at a later stage. IT will be covered in a subsequent PR
Configuration menu - View commit details
-
Copy full SHA for c2ba7f7 - Browse repository at this point
Copy the full SHA c2ba7f7View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5e232c3 - Browse repository at this point
Copy the full SHA 5e232c3View commit details
Commits on Jun 29, 2018
-
Configuration menu - View commit details
-
Copy full SHA for 534e865 - Browse repository at this point
Copy the full SHA 534e865View commit details -
Configuration menu - View commit details
-
Copy full SHA for 1c66768 - Browse repository at this point
Copy the full SHA 1c66768View commit details
Commits on Jul 2, 2018
-
Configuration menu - View commit details
-
Copy full SHA for 5bdca0b - Browse repository at this point
Copy the full SHA 5bdca0bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 04911a4 - Browse repository at this point
Copy the full SHA 04911a4View commit details
Commits on Jul 3, 2018
-
Configuration menu - View commit details
-
Copy full SHA for e5009ea - Browse repository at this point
Copy the full SHA e5009eaView commit details
Commits on Jul 6, 2018
-
Configuration menu - View commit details
-
Copy full SHA for 0d6b842 - Browse repository at this point
Copy the full SHA 0d6b842View commit details
Commits on Jul 12, 2018
-
Add call to countdown() for the reloadLatch
This was previously mistakenly removed in one of the refactoring phases.
Configuration menu - View commit details
-
Copy full SHA for f6dfb02 - Browse repository at this point
Copy the full SHA f6dfb02View commit details -
Configuration menu - View commit details
-
Copy full SHA for 20ce308 - Browse repository at this point
Copy the full SHA 20ce308View commit details -
Configuration menu - View commit details
-
Copy full SHA for c2e3de6 - Browse repository at this point
Copy the full SHA c2e3de6View commit details -
Copy over a cert with different size so that we are sure that the SSLConfiguration will be resolved. The underlying potential bug will be tackled in a separate issue.
Configuration menu - View commit details
-
Copy full SHA for e55ea07 - Browse repository at this point
Copy the full SHA e55ea07View commit details -
Configuration menu - View commit details
-
Copy full SHA for e114e01 - Browse repository at this point
Copy the full SHA e114e01View commit details
Commits on Jul 13, 2018
-
Configuration menu - View commit details
-
Copy full SHA for b958d2b - Browse repository at this point
Copy the full SHA b958d2bView commit details -
Configuration menu - View commit details
-
Copy full SHA for dc710f9 - Browse repository at this point
Copy the full SHA dc710f9View commit details
Commits on Jul 14, 2018
-
Configuration menu - View commit details
-
Copy full SHA for eddb426 - Browse repository at this point
Copy the full SHA eddb426View commit details -
Configuration menu - View commit details
-
Copy full SHA for 75a73f1 - Browse repository at this point
Copy the full SHA 75a73f1View commit details -
Configuration menu - View commit details
-
Copy full SHA for 89cf245 - Browse repository at this point
Copy the full SHA 89cf245View commit details
Commits on Jul 16, 2018
-
Configuration menu - View commit details
-
Copy full SHA for ff9505e - Browse repository at this point
Copy the full SHA ff9505eView commit details -
Configuration menu - View commit details
-
Copy full SHA for dcac90c - Browse repository at this point
Copy the full SHA dcac90cView commit details
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.