diff --git a/Dockerfile b/Dockerfile index 6db7b1749a..a052c7614e 100644 --- a/Dockerfile +++ b/Dockerfile @@ -215,7 +215,7 @@ RUN apt-get update -y \ # Fixes CVE-2023-4911 can be removed when we update the base OS image to include this fix # docker run -it debian:12.1-slim ldd --version # This fix can be removed as long as the version printed in the above command is 2.36-9+deb12u3 or above - libc6=2.36-9+deb12u3 \ + libc6=2.36-9+deb12u4 \ && apt-get clean \ && rm -rf /var/lib/apt/lists/* diff --git a/common/src/main/java/com/radixdlt/crypto/RadixKeyStore.java b/common/src/main/java/com/radixdlt/crypto/RadixKeyStore.java index dde8b0f13b..f136134e98 100644 --- a/common/src/main/java/com/radixdlt/crypto/RadixKeyStore.java +++ b/common/src/main/java/com/radixdlt/crypto/RadixKeyStore.java @@ -110,11 +110,9 @@ * store, * *

Implementation note:
- * This store uses a PKCS#12 representation for the underlying storage, and the store requires a - * non-empty password to protect it. In order to ease unattended use, note that where a password is - * required, a {@code null}, or zero length password may be provided, in which case the default 5 - * character password, "radix" is used. Clearly this is insecure, and clients should make an effort - * to specify passwords in a secure way. + * This store uses a PKCS#12 representation for the underlying storage. It's required to supply a + * non-null password for the keystore, but it can be empty. An empty password will be used as-is, + * without any replacement default. */ @SecurityCritical(SecurityKind.KEY_STORE) public final class RadixKeyStore implements Closeable { diff --git a/core/build.gradle b/core/build.gradle index 07158f7d81..4b13ede5a3 100644 --- a/core/build.gradle +++ b/core/build.gradle @@ -210,6 +210,7 @@ dependencies { implementation project(':olympia-engine') implementation project(':common') implementation project(':core-rust-bridge') + implementation project(':keygen') implementation 'com.fasterxml.jackson.core:jackson-databind' implementation 'io.swagger:swagger-annotations:1.5.0' @@ -377,3 +378,7 @@ task deb4docker(dependsOn: buildDeb) { println "SUCCESS: deb package copied for the docker build to: $destinationLocation" } } + +applicationDistribution.from(new File(project(':keygen').buildDir, "scripts")) { + into "bin" +}