Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-139917

[RFE] Native FIPS support in Go 1.27

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • rhel-10.2
    • golang
    • None
    • [RFE] Native FIPS support in Go 1.27
    • None
    • rhel-pt-go
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      Description

      OpenShift would like to move toward native FIPS support in our OpenShift 5.2 release which would allow us to move from ubi-minimal base images to either ubi-micro or perhaps distroless. This is critical because it reduces the surface area of CVE scanning considerably, ubi-minimal has some 220 packages while ubi-micro has just 43.

      To be clear, we're not concerned with size but CVE flag rates for packages in base images.

      What SSTs and Layered Product teams should review this?

       
      rhel-pt-go

              go-maint@redhat.com Go Maint
              rhn-support-sdodson Scott Dodson
              Go Maint Go Maint
              Edjunior Machado Edjunior Machado
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated: