action #100536
closed[sle][security][backlog][feature][ECO] SLE-18539 - QA: FIPS: supply a go built with openssl linkage
0%
Description
https://jira.suse.com/browse/SLE-18539
Red Hat has FIPS enabled GO by doing:
Use boringssl branch of go
Add patch from using boringssl to use system openssl
FIPS!
https://developers.redhat.com/blog/2019/06/24/go-and-fips-140-2-on-red-hat-enterprise-linux/
see e.g. source rpm in here:
https://centos.pkgs.org/7/centos-sclo-rh-x86_64/go-toolset-7-golang-1.10.2-4.el7.x86_64.rpm.html
(Suitable developer might be Jeff Kowalczyk )
redhat submitted to go: https://github.com/golang/go/pull/43900
redhat version in RPM: http://ftp.riken.jp/Linux/cern/centos/8.3/AppStream/Source/SPackages/golang-1.14.12-1.module_el8.3.0+605+410c5674.src.rpm
Updated by bchou over 2 years ago
- Subject changed from [sle][security][sle15sp4][feature][manual] SLE-18539 - QA: FIPS: supply a go built with openssl linkage to [sle][security][sle15sp4][feature][ECO] SLE-18539 - QA: FIPS: supply a go built with openssl linkage
- Status changed from New to Blocked
- Estimated time set to 40.00 h
This feature will not be released in SLE15 SP4 GMC.
https://jira.suse.com/browse/SLE-18539
Set this as ECO.
Updated by llzhao over 2 years ago
- Subject changed from [sle][security][sle15sp4][feature][ECO] SLE-18539 - QA: FIPS: supply a go built with openssl linkage to [sle][security][backlog][feature][ECO] SLE-18539 - QA: FIPS: supply a go built with openssl linkage
Updated by tjyrinki_suse over 2 years ago
Latest news was that this is not part of our FIPS plans at the moment, but progresses separately from FIPS certification efforts.
Updated by bchou over 2 years ago
- Status changed from Blocked to Rejected
As confirmation, I think this would be not our scope at the moment. Rejected. Thanks.