FIPS should prompt for confirmation when enabling #1031
Milestone
Comments
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 18, 2020
Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for canonical#1031.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 18, 2020
Entitlement.static_affordances need to be a runtime instance property so that FIPS* can interactively prompt the user with a callable prior to performing an enable or disable per canonical#1031. Once the support is there for dynamically calling external functions FIPS can use util.prompt_for_confirmation before enable or disable of the service.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 18, 2020
Entitlement.static_affordances need to be a runtime instance property so that FIPS* can interactively prompt the user with a callable prior to performing an enable or disable per canonical#1031. Once the support is there for dynamically calling external functions FIPS can use util.prompt_for_confirmation before enable or disable of the service.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 18, 2020
Entitlement.static_affordances need to be a runtime instance property so that FIPS* can interactively prompt the user with a callable prior to performing an enable or disable per canonical#1031. Once the support is there for dynamically calling external functions FIPS can use util.prompt_for_confirmation before enable or disable of the service.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 18, 2020
Entitlement.static_affordances need to be a runtime instance property so that FIPS* can interactively prompt the user with a callable prior to performing an enable or disable per canonical#1031. Once the support is there for dynamically calling external functions FIPS can use util.prompt_for_confirmation before enable or disable of the service.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 20, 2020
Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for canonical#1031.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 20, 2020
Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for canonical#1031.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 20, 2020
Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for canonical#1031.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 22, 2020
Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for canonical#1031.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 22, 2020
Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for canonical#1031.
powersj
pushed a commit
that referenced
this issue
Apr 22, 2020
* repo: allow for pre_enable/pre_disable messaging interactions Consolidate messging hook processing under a single function handle_message_operations This is groundwork for FIPS pre-enable and pre-disable custom messaging and prompts for #1031. * repo: make messaging an instance property so it can use instance vars
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 27, 2020
blackboxsw
added a commit
that referenced
this issue
Apr 30, 2020
Add confirmation prompt messaging to fips and fips-updates. * prompt prior to enabling fips-updates to notify about FIPS non-compliance * prompt prior to ua disable fips or fips-updates that disabling access to FIPS packages * message that a reboot is required post disable operation of FIPS and FIPS updates to complete disable operation. One PR to follow to complete the work in #1031.
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
Apr 30, 2020
Addresses the last remaining FIPS-related prompt and message when running: ua enable fips. Fixes: canonical#1031
blackboxsw
added a commit
to blackboxsw/ubuntu-advantage-client
that referenced
this issue
May 15, 2020
Entitlement.static_affordances need to be a runtime instance property so that FIPS* can interactively prompt the user with a callable prior to performing an enable or disable per canonical#1031. Once the support is there for dynamically calling external functions FIPS can use util.prompt_for_confirmation before enable or disable of the service.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checklist;
--assume-yesparam on the CLI to avoid such promptsua enable fipsInstallation of additional packages are required to make this system FIPS compliant
Are you sure? (y/n)
ua disable fips*This will disable access to certified FIPS packages
Are you sure? (y/n)
ua enable fips-updatesThis system will NOT be considered FIPS certified, but will include security and bug fixes to the FIPS packages.
Are you sure? (y/n)
ua disable fips-*A reboot is required to complete the disable process
The text was updated successfully, but these errors were encountered: