Project

General

Profile

Actions
Copy link

action #138428

closed

coordination #138728: [Epic] FIPS mode

Test container engines on FIPS mode

Added by jlausuch 8 months ago. Updated 3 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
pherranz
Target version:
-
Start date:
2023-10-24
Due date:
% Done:

100%

Estimated time:
Tags:
fips

Description

Background

In JeOS and SLE Micro/MicroOS, there is a test suite which enables FIPS on the kernel and runs some security related tests (openssl, gnutls, gpg, etc), but we don't run any other test beyond those ones.

Goal

Create a new test suite which enables FIPS and runs container hosts tests. We probably don't need to run the full test suite as we do for regular host, but maybe a subset running podman/docker engines.
This could be applicable to openSUSE and SLE, we can maybe target only TW Minimal-VM and SLE 15-SP6 for now. Later on, it can also be extended to SLE Micro, ALP, etc.

This idea came during a BCI call on 24 October 2023 while talking about running BCI tests on FIPS enabled host.

Actions
Copy link

Also available in: Atom PDF