Bug 2014199
| Summary: | Improve system FIPS detection [java-11-openjdk, RHEL 8] [rhel-8.4.0.z] | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 8 | Reporter: | RHEL Program Management Team <pgm-rhel-tools> |
| Component: | java-11-openjdk | Assignee: | Andrew John Hughes <ahughes> |
| Status: | CLOSED ERRATA | QA Contact: | OpenJDK QA <java-qa> |
| Severity: | medium | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 8.4 | CC: | ahughes, awestbro, jandrlik, jdowland, jvanek, mepley, mmillson, mralph, rlucente, sgehwolf, ssorce |
| Target Milestone: | rc | Keywords: | Triaged, ZStream |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | java-11-openjdk-11.0.13.0.8-2.el8_4 | Doc Type: | Bug Fix |
| Doc Text: |
Previously, OpenJDK's FIPS mode would be enabled if it detected that the system crypto policy was set to FIPS. This meant that containers running on a FIPS mode kernel would not enable FIPS mode without the crypto policy being changed. With this update, OpenJDK queries the NSS library as to whether FIPS mode is active or not.
|
Story Points: | --- |
| Clone Of: | 1929465 | Environment: | |
| Last Closed: | 2022-01-24 09:51:13 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1929465 | ||
| Bug Blocks: | 2014211 | ||
|
Comment 14
errata-xmlrpc
2022-01-24 09:51:13 UTC
|