Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Critical
Fix Version/s: 4.14.0
Affects Version/s: 4.13
Component/s: kube-apiserver
Labels:
- api

Severity:
Critical
Regression:
No
Epic Link:
APIserver encryption cipher for etcd
Release Blocker:
Proposed
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Release Note Text:
N/A
Release Note Type:
Release Note Not Required
Target Version:

4.14.0

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

AES-GCM encryption was enabled in cluster-openshift-apiserver-operator and cluster-openshift-autenthication-operator, but not in the cluster-kube-apiserver-operator. When trying to enable aesgcm encryption in the apiserver config, the kas-operator will produce an error saying that the aesgcm provider is not supported.

is cloned by

OCPBUGS-8712 AES-GCM encryption at rest is not supported by kube-apiserver-operator

Closed

is depended on by

OCPBUGS-8712 AES-GCM encryption at rest is not supported by kube-apiserver-operator

Closed

links to

openshift/cluster-kube-apiserver-operator#1449: OCPBUGS-8711: API-1509: Enable AES-GCM encryption

RHSA-2023:5006 OpenShift Container Platform 4.14.z security update

Assignee:: Damien Grisonnet

Reporter:: Damien Grisonnet

QA Contact:: Deepak Punia

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2023/03/08 3:40 PM

Updated:: 2023/10/31 1:41 PM

Resolved:: 2023/10/31 1:41 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates