Uploaded image for project: 'Red Hat OpenShift Dev Spaces (formerly CodeReady Workspaces) '
  1. Red Hat OpenShift Dev Spaces (formerly CodeReady Workspaces)
  2. CRW-1598

Support FIPS

    XMLWordPrintable

Details

    • False
    • False
    • 0
    • 0% 0%
    • Hide
      = FIPS support

      If enabled in the operating system for your OpenShift cluster and its worker nodes, FIPS is supported. See link:https://docs.openshift.com/container-platform/4.8/installing/installing-fips.html[Installing FIPS on OpenShift].
      Show
      = FIPS support If enabled in the operating system for your OpenShift cluster and its worker nodes, FIPS is supported. See link: https://docs.openshift.com/container-platform/4.8/installing/installing-fips.html [Installing FIPS on OpenShift].

    Description

      There's lots of stuff out there that, for example, still uses insecure hashes like md5. If FIPS is enabled openssl will error on trying to create an md5 hash - this failing is a feature from a FIPS perspective. I believe you can also hit issues with applications that statically linked openssl without the FIPS support built in.

      Past FIPS issues:

      Unresolved FIPS issues:

      • CRW-1126 - Add infrastructure-features badges (labels) on operator

      TODO: add requirements around FIPS enablement, features, support, test cases, user stories, etc.

      Attachments

        Issue Links

          is cloned by

          Feature Request - Feature requests from customers and/or users RHDEVDOCS-3204 Document support for FIPS

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed
          is related to

          Bug - A problem that impairs or prevents the functions of the product. CRW-1018 CRW 2.1 in FIPS enabled cluster

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          relates to

          Task - Represents a small unit of work that is not end-user facing. CRW-1126 Add infrastructure-features badges (labels) on operator

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          links to

          GitHub eclipse-che/che-operator#991: chore: add 'fips' feature label

          Activity

            People

              abazko Anatolii Bazko
              nickboldt Nick Boldt
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: