Uploaded image for project: 'Red Hat OpenShift Dev Spaces (formerly CodeReady Workspaces) '
  1. Red Hat OpenShift Dev Spaces (formerly CodeReady Workspaces)
  2. CRW-1598

Support FIPS

XMLWordPrintable

    • False
    • False
    • Hide
      = FIPS support

      If enabled in the operating system for your OpenShift cluster and its worker nodes, FIPS is supported. See link:https://docs.openshift.com/container-platform/4.8/installing/installing-fips.html[Installing FIPS on OpenShift].
      Show
      = FIPS support If enabled in the operating system for your OpenShift cluster and its worker nodes, FIPS is supported. See link: https://docs.openshift.com/container-platform/4.8/installing/installing-fips.html [Installing FIPS on OpenShift].

      There's lots of stuff out there that, for example, still uses insecure hashes like md5. If FIPS is enabled openssl will error on trying to create an md5 hash - this failing is a feature from a FIPS perspective. I believe you can also hit issues with applications that statically linked openssl without the FIPS support built in.

      Past FIPS issues:

      Unresolved FIPS issues:

      • CRW-1126 - Add infrastructure-features badges (labels) on operator

      TODO: add requirements around FIPS enablement, features, support, test cases, user stories, etc.

              abazko Anatolii Bazko
              nickboldt Nick Boldt
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: