This library will bundle known validated BouncyCastle FIPS provider, will provide java options and bootclasspath files. Provide test support tools for JEP-237
Please note more simple tests which does not need FIPS validated cryptography modules can simply use idiom to activate the system property:
@ClassRule
public static FlagRule<String> fipsSystemPropertyRule =
FlagRule.systemProperty("jenkins.security.FIPS140.COMPLIANCE", "true");In order to include BouncyCastle as FIPS compliant cryptographic provider, you only need to add this to your usage of RealJenkinsRule
@Rule public RealJenkinsRule rr = new RealJenkinsRule()
.withFIPSEnabled();To use a specific version of the bundle
@Rule public RealJenkinsRule rr = new RealJenkinsRule()
.withFIPSEnabled(FIPSTestBundleProvider.get("version"));Version can be:
FIPS1402BC1x.VERSIONFIPS1403BC2x.VERSION
If you need (such PCT context which need to use a fixed version) to override the version defined in the test code, the version can be overriden using:
- Env var:
ENV_VAR_KEY - System property:
fips.test.bundle.version
Report issues and enhancements in the Github project issue tracker.
TODO review the default CONTRIBUTING file and make sure it is appropriate for your plugin, if not then add your own one adapted from the base file
Refer to our contribution guidelines
Licensed under MIT, see LICENSE