Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory (cryptsetup bug fix and enhancement update), and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.
https://access.redhat.com/errata/RHBA-2022:6606
Hi [anaconda root@storageqe-59 ~]# sysctl crypto.fips_enabled crypto.fips_enabled = 1 [anaconda root@storageqe-59 ~]# dd if=/dev/zero of=test.tar bs=1M count=100 100+0 records in 100+0 records out 104857600 bytes (105 MB, 100 MiB) copied, 0.197924 s, 530 MB/s [anaconda root@storageqe-59 ~]# ls /etc/system-fips ls: cannot access '/etc/system-fips': No such file or directory [anaconda root@storageqe-59 ~]# [anaconda root@storageqe-59 ~]# cryptsetup luksFormat --pbkdf argon2id test.tar -q Enter passphrase for test.tar: Only PBKDF2 is supported in FIPS mode. Failed to set pbkdf parameters. [anaconda root@storageqe-59 ~]# [anaconda root@storageqe-59 ~]# cryptsetup luksFormat --pbkdf argon2id test.tar -q ^C [anaconda root@storageqe-59 ~]# cryptsetup luksFormat test.tar -q Enter passphrase for test.tar: [anaconda root@storageqe-59 ~]# cryptsetup luksDump test.tar | grep PBKDF PBKDF: pbkdf2 [anaconda root@storageqe-59 ~]# [anaconda root@storageqe-59 ~]# uname -a Linux storageqe-59.rhts.eng.pek2.redhat.com 5.14.0-70.13.1.el9_0.x86_64 #1 SMP PREEMPT Thu Apr 14 12:42:38 EDT 2022 x86_64 x86_64 x86_64 GNU/Linux [anaconda root@storageqe-59 ~]# test pass with cryptsetup-2.4.3-4.el9_0.1 and RHEl-9.0.0 Z stream