Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Normal
Fix Version/s: None
Affects Version/s: rhel-10.0
Component/s: osbuild
Labels:
- rn-yml

Regression:
No
Severity:
Low

AssignedTeam:
image-builder-1

Story Points:
None
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
Yes
Sprint:
None

Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/150012
Test Coverage:

RegressionOnly

Release Note Type:
Enhancement
Release Note Text:

Hide
.New boot menu entry for `image-installer`
Before this update, you could not switch an installed system to FIPS mode. You needed to select FIPS at install time by setting `fips=1 ` on the kernel command line when booting the installer from the `image-installer ` ISO image.

With this enhancement, a boot menu entry is available in the `image-installer` image type that sets `fips=1` on the kernel command line, making it easier for users to install in FIPS mode.

Show
.New boot menu entry for `image-installer` Before this update, you could not switch an installed system to FIPS mode. You needed to select FIPS at install time by setting `fips=1 ` on the kernel command line when booting the installer from the `image-installer ` ISO image. With this enhancement, a boot menu entry is available in the `image-installer` image type that sets `fips=1` on the kernel command line, making it easier for users to install in FIPS mode.
Release Note Status:
Done
ProdDocsReview-CCS:
Done
ProdDocsReview-Dev:
Done
ProdDocsReview-QE:
Unspecified

Experience:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

In RHEL10 it is no longer possible to switch an installed system to FIPS, it needs to be done during install with fips=1 set on the kernel cmdline when booting the installer from the boot.iso – this is documented, but to make it easier and more visible to users we should add a new boot menu entry to the boot.iso menu.

This menu entry should also be added for osbuild-composer produced installer isos.

clones

RHEL-91929 [RHEL-10] Add a menu entry to the boot.iso to boot with fips=1

Release Pending

Assignee:: Brian Lane

Reporter:: Brian Lane

Developer:: Osbuilders Bot Account

QA Contact:: Release Test Team

Doc Contact:: Mugdha Soni

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2025/07/16 3:58 PM

Updated:: 2025/10/10 8:24 PM

Stale Date:: 2026/10/09

Next Planned Release Date:: 2025/11/11

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

Hide