Draft: Add patch to fix Ruby RSA Key parsing in FIPS mode (!2006) · Merge requests · GitLab.org / Build / CNG

Balasankar 'Balu' C requested to merge fix-fips-rsa-parse into master Sep 05, 2024

What does this MR do?

Add patch to fix Ruby RSA Key parsing in FIPS mode.

First commit creates a patch that backports https://github.com/ruby/ruby/commit/2a4834057b30a26c38ece3961b370c0b2ee59380 to Ruby 3.1 and Ruby 3.2
Second commit enhances those patches to include https://github.com/ruby/ruby/commit/b0ec1db8a72c530460abd9462ac75845362886bd also.

Testing

Spin up a FIPS instance using the FIPS images from this MR and ensure it is functional. One can use the docker-compose.yml added in !2004 (merged) (docker compose -f docker-compose.fips.yml up -d) for this

Related issues

#2081

Checklist

See Definition of done.

For anything in this list which will not be completed, please provide a reason in the MR discussion

Required

Merge Request Title, and Description are up to date, accurate, and descriptive
MR targeting the appropriate branch
MR has a green pipeline on GitLab.com
When ready for review, MR is labeled "~workflow::ready for review" per the Distribution MR workflow

Expected (please provide an explanation if not completing)

Test plan indicating conditions for success has been posted and passes
Documentation created/updated
Integration tests added to GitLab QA
The impact any change in container size has should be evaluated
New dependencies are managed with dependencies.io

Edited Sep 05, 2024 by Balasankar 'Balu' C

Draft: Add patch to fix Ruby RSA Key parsing in FIPS mode