All Known Implementing Classes:: FIPS1402BC1x, FIPS1403BC2x

public interface FIPSTestBundleProvider

This class will some default (validated) FIPS configuration for RealJenkinsRule or anything else FIPS BouncyCastle jars (bc-fips.jar, bctls-fips.jar and bcpkix-fips.jar) are in the provided directory. This will set some System properties such :

-Xbootclasspath with FIPS BouncyCastle jars
java.security.properties to a new temp file configuring the security provider to FIPS BouncyCastle
-Dsecurity.overridePropertiesFile=true
-Djavax.net.ssl.trustStoreType=PKCS12
-Djenkins.security.FIPS140.COMPLIANCE=true
-Dcom.redhat.fips=false

Field Summary

Fields

Modifier and Type

Field

Description

static final String

DEFAULT_VERSION

static final String

ENV_VAR_KEY

static final Logger

LOGGER

static final String

SYS_PROP_KEY
Method Summary

Modifier and Type

Method

Description

static FIPSTestBundleProvider

get()

this method will return an instance of FIPSTestBundleProvider according to the mechanism defined get(String) or the default version provided by DEFAULT_VERSION

static FIPSTestBundleProvider

get(String version)

Order of precedence to obtain version to use env var FIPS_TEST_BUNDLE_VERSION system property fips.test.bundle.version parameter

List<File>

getBootClasspathFiles()

List<String>

getJavaOptions()

String

getVersion()

Field Details
- LOGGER
  
  static final Logger LOGGER
- DEFAULT_VERSION
  
  static final String DEFAULT_VERSION
  See Also:
  
  Constant Field Values
- SYS_PROP_KEY
  
  static final String SYS_PROP_KEY
  See Also:
  
  Constant Field Values
- ENV_VAR_KEY
  
  static final String ENV_VAR_KEY
  See Also:
  
  Constant Field Values
Method Details
- getVersion
  
  String getVersion()
  
  Returns:
  
  the FIPS specification version managed by this bundle provider the format will contain BouncyCastle series version as well such fips-140_2-1.x
- getJavaOptions
  
  List<String> getJavaOptions() throws IOException
  
  Returns:
  
  the List of system properties to add to RealJenkinsRule start
  
  Throws:
  
  IOException
- getBootClasspathFiles
  
  List<File> getBootClasspathFiles() throws IOException
  
  Returns:
  
  the List of libraries to add to -Xbootclasspath/a option
  
  Throws:
  
  IOException
- get
  
  static FIPSTestBundleProvider get()
  
  this method will return an instance of FIPSTestBundleProvider according to the mechanism defined get(String) or the default version provided by DEFAULT_VERSION
- get
  
  static FIPSTestBundleProvider get(String version)
  Order of precedence to obtain version to use
  
  env var FIPS_TEST_BUNDLE_VERSION
  
  system property fips.test.bundle.version
  
  parameter
  Parameters:
  
  version - the version to use BUT this can be overridden with above mechanism using env var or system property
  
  Returns:
  
  instance on FIPSTestBundleProvider according ot

Interface FIPSTestBundleProvider

Field Summary

Method Summary

Field Details

LOGGER

DEFAULT_VERSION

SYS_PROP_KEY

ENV_VAR_KEY

Method Details

getVersion

getJavaOptions

getBootClasspathFiles

get

get