Details

    • Hide
      = FIPS support

      If enabled in the operating system for your OpenShift cluster and its worker nodes, FIPS is supported. See link:https://docs.openshift.com/container-platform/4.8/installing/installing-fips.html[Installing FIPS on OpenShift].
      Show
      = FIPS support If enabled in the operating system for your OpenShift cluster and its worker nodes, FIPS is supported. See link: https://docs.openshift.com/container-platform/4.8/installing/installing-fips.html [Installing FIPS on OpenShift].
    • Resolved Issue

    Description

      There's lots of stuff out there that, for example, still uses insecure hashes like md5. If FIPS is enabled openssl will error on trying to create an md5 hash - this failing is a feature from a FIPS perspective. I believe you can also hit issues with applications that statically linked openssl without the FIPS support built in.

      Past FIPS issues:

      Unresolved FIPS issues:

      • CRW-1126 - Add infrastructure-features badges (labels) on operator

      TODO: add requirements around FIPS enablement, features, support, test cases, user stories, etc.

      Attachments

        Issue Links

          Activity

            People

              abazko Anatolii Bazko
              nickboldt Nick Boldt
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: