Project

General

Profile

action #125420

[security][fips] improve tests for Firefox password handling

Added by amanzini 3 months ago. Updated 2 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
pstivanin
Category:
-
Target version:
-
Start date:
2023-03-06
Due date:
% Done:

100%

Estimated time:
Difficulty:
Tags:
fips

Description

Ticket started from a bug filed in https://bugzilla.suse.com/show_bug.cgi?id=1208951
When Firefox is run in FIPS kernel mode, it refuses to set a trivial password. This is expected, as tests for FIPS mode sets a stronger password:

https://github.com/os-autoinst/os-autoinst-distri-opensuse/blob/master/tests/fips/mozilla_nss/firefox_nss.pm 

# Define FIPS password for firefox, and it should be consisted by:
# - at least 8 characters
# - at least one upper case
# - at least one non-alphabet-non-number character (like: @-.=%)
my $fips_password = 'openqa@SUSE';

In that test, we only check for the successful setting of the strong password,
would be useful to test the proper behavior in both situations, e.g.

  • try to set a weak password, expect an error
  • try to set a strong password, expect success

History

#1 Updated by amanzini 3 months ago

  • Description updated (diff)

#2 Updated by pstivanin 2 months ago

  • Status changed from New to In Progress
  • Assignee set to pstivanin

#3 Updated by pstivanin 2 months ago

  • % Done changed from 0 to 70

#5 Updated by pstivanin 2 months ago

  • Status changed from In Progress to Resolved
  • % Done changed from 70 to 100

Also available in: Atom PDF