Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Critical
Fix Version/s: None
Affects Version/s: None
Labels:
None

Story Points:
3
Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
Bump openshift-router image to RHEL9
Intelligence Requested:
Market:

Sprint:
Sprint 246
Cost of Delay:
0
WSJF:
0.0

SFDC Cases Links:
SFDC Cases Counter:

The origin test "when FIPS is disabled the HAProxy router should serve routes when configured with a 1024-bit RSA key" is failing due to a hardcoded certificate using SHA1 as the hash algorithm.

The certificate needs to be updated to use SHA256 as SHA1 isn't support anymore.

More details: https://github.com/openshift/router/pull/538#issuecomment-1831925290

is related to

OCPBUGS-26498 Router fails to start/reload with SHA1 cert due to OpenSSL 3.0 in RHEL9

ON_QA

links to

openshift/origin#28457: NE-1477: Regenerate cert in 1024 key FIPs test to use SHA256

Assignee:: Grant Spence

Reporter:: Grant Spence

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2023/12/13 6:58 PM

Updated:: 2024/01/08 8:57 PM

Resolved:: 2023/12/20 2:41 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates