Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FIPS-enabled golang builds #491

Closed
mudler opened this issue Aug 6, 2021 · 0 comments · Fixed by #513
Closed

FIPS-enabled golang builds #491

mudler opened this issue Aug 6, 2021 · 0 comments · Fixed by #513
Assignees
Labels
kind/enhancement New feature or request

Comments

@mudler
Copy link
Contributor

mudler commented Aug 6, 2021

Is your feature request related to a problem? Please describe.
Binaries that we build on our own aren't FIPS-enabled

Describe the solution you'd like
The same set of golang packages that we build off internally but FIPS-enabled. Since FIPS enabled builds requires CGO_ENABLED=1 we could have or either a set of -static packages or either a -fips based one, without loosing the static packages that we ship now which are handy in different contexts.

Additional context
https://github.com/golang/go/blob/dev.boringcrypto.go1.12/misc/boring/README.md

@mudler mudler added the kind/enhancement New feature or request label Aug 6, 2021
@mudler mudler self-assigned this Aug 6, 2021
@mudler mudler removed their assignment Aug 6, 2021
mudler added a commit that referenced this issue Aug 6, 2021
Adds meta/cos-minimal package which requires the minimal set of packages
in order to have a minimal functioning cOS derivative.

This is also in the long-term very handy if we are going to have a
separate set of packages which are fips-enabled (#491)

Signed-off-by: Ettore Di Giacinto <edigiacinto@suse.com>
mudler added a commit that referenced this issue Aug 6, 2021
Adds meta/cos-minimal package which requires the minimal set of packages
in order to have a minimal functioning cOS derivative.

This is also in the long-term very handy if we are going to have a
separate set of packages which are fips-enabled (#491)

Signed-off-by: Ettore Di Giacinto <edigiacinto@suse.com>
@mudler mudler self-assigned this Aug 10, 2021
@mudlers mudlers linked a pull request Aug 12, 2021 that will close this issue
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
kind/enhancement New feature or request
Projects
None yet
Development

Successfully merging a pull request may close this issue.

1 participant