Skip to content

[Feature Request] Documentation for FIPS configuration #18324

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
whgibbo opened this issue May 16, 2025 · 1 comment
Open

[Feature Request] Documentation for FIPS configuration #18324

whgibbo opened this issue May 16, 2025 · 1 comment
Labels
enhancement Enhancement or improvement to existing feature or request Other untriaged

Comments

@whgibbo
Copy link

whgibbo commented May 16, 2025

Is your feature request related to a problem? Please describe

Looking for clarification if OpenSearch 3.x can be configured for FIPS only algorithms.
From what I can see:

  • the BouncyCastle FIPS jars are included in the docker image
  • usr/share/opensearch/config/java.security is configured to Bouncy castle

But can't find any documentation references to on how to enable this.

I'm assuming that just setting the JVM OPTS could be enough..

Describe the solution you'd like

It would be good for any or all of the following:

  • introduce documentation to indicate if FIPS is support and what level.
  • introduce a parameter for the docker file to enable FIPS, which would the utilize the correct java.security file.

Related component

Other

Describe alternatives you've considered

Trying what I suggested above.

Additional context

No response
@whgibbo whgibbo added enhancement Enhancement or improvement to existing feature or request untriaged labels May 16, 2025
@github-actions github-actions bot added the Other label May 16, 2025
@andrross
Copy link
Member

@beanuwave @cwperks Can you provide any help here?

@github-project-automation github-project-automation bot moved this to Not Started in PPL 2025 May 30, 2025
@anasalkouz anasalkouz removed this from PPL 2025 May 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement Enhancement or improvement to existing feature or request Other untriaged
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@whgibbo @andrross