Bug 1804186
| Summary: | Podman support for FIPS Mode requires a bind mount inside the container [extras-rhel-7.8/buildah] | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Jindrich Novy <jnovy> |
| Component: | buildah | Assignee: | Tom Sweeney <tsweeney> |
| Status: | CLOSED WONTFIX | QA Contact: | atomic-bugs <atomic-bugs> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 7.8 | CC: | ajia, ddarrah, dwalsh, jnovy, lfriedma, lsm5, nalin, tsweeney, umohnani |
| Target Milestone: | rc | Keywords: | Extras |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2020-06-03 15:33:32 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 1784950 | ||
|
Description
Jindrich Novy
2020-02-18 12:30:50 UTC
I believe the RHEL7 image has FIPS support, not sure what the issue is? If the link between /etc/system-fips and /run/secrets/system-fips is completed by the container engines and the kernel is in fips mode then the rhel7 content will go into fips mode. RHEL7 does not support any of the new RHEL8 features of crypto libraries, but it should work in fips mode. RHEL7 is in Maintenance mode. Buildah 1.14.9 has support for this in RHEL8 |