-
Notifications
You must be signed in to change notification settings - Fork 90
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FIPS compliance #113
Comments
Useful: https://go.googlesource.com/go/+/dev.boringcrypto/README.boringcrypto.md
while:
(empty output) |
the subtle problem of FIPS is that requires cgo enabled |
Does this mean we cannot cross compile anymore? This would require lots of changes in the release pipelines I assume. |
correct, at least, you can create static binaries still even with CGO enabled, however there are several limitations we have to watch out in that specific case. |
Closing as we have full examples of BYOI to generate FIPS enabled images https://github.com/kairos-io/kairos/blob/master/examples/byoi/fedora-fips/ |
Plan:
(rockylinux is a good candidate because is SELinux ready and we are going to need it in the future).
The text was updated successfully, but these errors were encountered: