From ab4b7f7ca4a3a477df1cf61418f2d63755652dcc Mon Sep 17 00:00:00 2001
From: Johnny Hughes <johnny@centos.org>
Date: Mon, 14 May 2018 14:34:43 +0000
Subject: [PATCH] set ipaplatform to rhel for compatibilty for updates

---
 SOURCES/0040-Increase-the-default-token-key-size.patch |   34 ++++++++++++++++++++++++++++++++++
 1 files changed, 34 insertions(+), 0 deletions(-)

diff --git a/SOURCES/0040-Increase-the-default-token-key-size.patch b/SOURCES/0040-Increase-the-default-token-key-size.patch
new file mode 100644
index 0000000..77a44f8
--- /dev/null
+++ b/SOURCES/0040-Increase-the-default-token-key-size.patch
@@ -0,0 +1,34 @@
+From ab2eaf607dd3746dd239595315dbaaebade06320 Mon Sep 17 00:00:00 2001
+From: Nathaniel McCallum <npmccallum@redhat.com>
+Date: Thu, 22 Feb 2018 14:04:10 -0500
+Subject: [PATCH] Increase the default token key size
+
+The previous default token key size would fail in FIPS mode for the sha384
+and sha512 algorithms. With the updated key size, the default will work in
+all cases.
+
+https://pagure.io/freeipa/issue/7168
+
+Reviewed-By: Rob Crittenden <rcritten@redhat.com>
+Reviewed-By: Christian Heimes <cheimes@redhat.com>
+Reviewed-By: Rob Crittenden <rcritten@redhat.com>
+---
+ ipaserver/plugins/otptoken.py | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/ipaserver/plugins/otptoken.py b/ipaserver/plugins/otptoken.py
+index c66f0980f0fc2ed49b4224be40a18ce528a6da7b..a6e423f949659d8157c8471d0fbc3ee8a299ac98 100644
+--- a/ipaserver/plugins/otptoken.py
++++ b/ipaserver/plugins/otptoken.py
+@@ -72,7 +72,7 @@ TOKEN_TYPES = {
+ }
+ 
+ # NOTE: For maximum compatibility, KEY_LENGTH % 5 == 0
+-KEY_LENGTH = 20
++KEY_LENGTH = 35
+ 
+ class OTPTokenKey(Bytes):
+     """A binary password type specified in base32."""
+-- 
+2.14.3
+

--
Gitblit v1.8.0