FIPS mode: Automatically upgrade key restrictions if they are set to 0

On a FIPS-enabled OS with a FIPS build (gitlab-environment-toolkit!631 (comment 911595454)), I'm not able to update the application settings because the validation doesn't like the default 0 values:

If you seed your database with a non-FIPS container/build, then upgrade the installation to FIPS, the default of 0 values get used. Upon showing/saving application settings, we should automatically upgrade the value to the minimum requirements set by FIPS (e.g. RSA = 3072, DSA disabled, etc.).