Uploaded image for project: 'OpenShift API for Data Protection'
  1. OpenShift API for Data Protection
  2. OADP-68

Enable FIPS Compliance for OADP

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Done
    • Icon: Major Major
    • OADP 1.0.0
    • None
    • None
    • False
    • False
    • Passed
    • 0
    • 0
    • 0
    • Untriaged
    • None

      Our understanding:

      • We need to ensure our downstream images are using UBI8
      • We need to ensure we are using the openshift golang builders
      • We need to audit our Operator, Velero, and Plugin images to check if any other crypto libraries are used which are not already covered by the UBI/FIPS crypto

       

      See below for information on enabling FIPS compliance

       

      arewm shared the below info for us to see another example
      Gatekeeper's config [1] and midstream [2].
       
      [1]https://gitlab.cee.redhat.com/cpaas-products/gatekeeper/-/tree/release-2.3
      [2]https://code.engineering.redhat.com/gerrit/plugins/gitiles/gatekeeper/+/refs/heads/rhacm-2.3-rhel-8

          1.
          		 Documentation: Discuss what/if anything is needed for running with FIPS Compliance Sub-task Closed Minor Wes Hayutin

              Unassigned Unassigned
              jmatthews John Matthews
              Xin Jiang Xin Jiang
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: