CPBR-1695: fixing FIPS configuration for openssl

confluentinc / common-docker

Confluent Commons with support for building and testing Docker images.

Apache License 2.0

4 stars 69 forks source link

CPBR-1695: fixing FIPS configuration for openssl #544

Closed rahejaprince closed 1 month ago

rahejaprince commented 1 month ago

Change Description

This PR adds a new configuration file for enabling FIPS compliant openssl. By default, the only change is openssl version which is set to 3.0.9 (highest FIPS supported openssl version). To enable FIPS mode for openssl, env var needs to set in the docker image OPENSSL_CONF="/usr/local/ssl/openssl-fips.cnf"

Testing

confluent-cla-assistant[bot] commented 1 month ago

:tada: All Contributor License Agreements have been signed. Ready to merge.
_{Please push an empty commit if you would like to re-run the checks to verify CLA status for all contributors.}