org.argeo.tp.jcr \
org.argeo.tp.poi \
org.argeo.tp.gis \
+org.argeo.tp.fips \
+
+# NOTE: FIPS support is experimental, in order to preapre for the 2.0.0 stream
+# see https://www.bouncycastle.org/fips_java_roadmap.html
include $(SDK_SRC_BASE)/sdk/argeo-build/repackage.mk
\ No newline at end of file
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcmail-jdk18on
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcpg-jdk18on:1.72.2
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcpkix-jdk18on
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcprov-jdk18on
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bctls-jdk18on
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcutil-jdk18on
SPDX-License-Identifier: MIT
Argeo-Origin-M2: :1.72
+Argeo-Origin-NoMetadataGeneration: true
+++ /dev/null
-Argeo-Origin-NoMetadataGeneration: true
-Argeo-Origin-M2: org.bouncycastle:bcmail-jdk18on
+++ /dev/null
-Argeo-Origin-NoMetadataGeneration: true
-Argeo-Origin-M2: org.bouncycastle:bcpg-jdk18on:1.72.2
+++ /dev/null
-Argeo-Origin-NoMetadataGeneration: true
-Argeo-Origin-M2: org.bouncycastle:bcpkix-jdk18on
+++ /dev/null
-Argeo-Origin-NoMetadataGeneration: true
-Argeo-Origin-M2: org.bouncycastle:bcprov-jdk18on
+++ /dev/null
-Argeo-Origin-NoMetadataGeneration: true
-Argeo-Origin-M2: org.bouncycastle:bcutil-jdk18on
--- /dev/null
+# !! The current version is unsafe, see:
+# https://github.com/bcgit/bc-java/wiki/CVE-2022-45146
+Argeo-Origin-M2: org.bouncycastle:bc-fips
--- /dev/null
+# !! The current version is unsafe, see:
+# https://github.com/bcgit/bc-java/wiki/CVE-2022-45146
+Argeo-Origin-M2: org.bouncycastle:bc-noncert:1.0.2.4
+Argeo-Origin-URI: https://downloads.bouncycastle.org/fips-java/bc-noncert-1.0.2.4.jar
+Argeo-Origin-Sources-URI: https://downloads.bouncycastle.org/fips-java/bc-noncert-1.0.2.4-sources.jar
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcmail-fips:1.0.4
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcpg-fips:1.0.7.1
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bcpkix-fips:1.0.7
--- /dev/null
+Argeo-Origin-M2: org.bouncycastle:bctls-fips:1.0.14.1
--- /dev/null
+SPDX-License-Identifier: MIT
+Argeo-Origin-NoMetadataGeneration: true
+Argeo-Origin-Do-Not-Modify: true
+Argeo-Origin-M2: :1.0.2.3
\ No newline at end of file
-Subproject commit 884c8b0c0b76b4d60fcb4a65d48a898f3ba27f0e
+Subproject commit 948d50f9792c1984eb055e58b8199f5778df901f