rpms / pki-core

Clone
Source Code
GIT

Files

  1.   120910d0d2d850a5fa9961ce994940f1a5b48be1
  2.   SOURCES
  3.   pki-core-Always-check-FIPS-mode-at-installation-time.patch
Blob Blame History Raw 
From ad8c47aaf675bbda7b2ab50e6fc20b22862f83c3 Mon Sep 17 00:00:00 2001
From: Matthew Harmsen <mharmsen@redhat.com>
Date: Tue, 23 May 2017 11:46:41 -0600
Subject: [PATCH] Always check FIPS mode at installation time

- Bugzilla Bug #1454603 - Unable to install IPA server due to pkispawn error

(cherry picked from commit 3249ddc2c19f6f5ded11823b345c9c58bae4750b)
---
 base/server/python/pki/server/deployment/scriptlets/initialization.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/base/server/python/pki/server/deployment/scriptlets/initialization.py b/base/server/python/pki/server/deployment/scriptlets/initialization.py
index 0e31543..4dc4e9a 100644
--- a/base/server/python/pki/server/deployment/scriptlets/initialization.py
+++ b/base/server/python/pki/server/deployment/scriptlets/initialization.py
@@ -42,6 +42,8 @@ class PkiScriptlet(pkiscriptlet.AbstractBasePkiScriptlet):
         # ALWAYS establish 'uid' and 'gid'
         deployer.identity.set_uid(deployer.mdict['pki_user'])
         deployer.identity.set_gid(deployer.mdict['pki_group'])
+        # ALWAYS check FIPS mode
+        deployer.fips.is_fips_enabled()
         # ALWAYS initialize HSMs (when and if present)
         deployer.hsm.initialize()
         if config.str2bool(deployer.mdict['pki_skip_installation']):
-- 
1.8.3.1

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation