On RHEL, using microk8s version 1.21.1 on a FIPS enabled offline system, we are seeing the following error when enabling add-ons (this did not occur with 1.19).
For example, when enabling dns:
fips.c(145): OpenSSL internal error, assertion failed: FATAL FIPS SELFTEST FAILURE
/snap/microk8s/2210/actions/common/utils.sh: line 70: 26240 Aborted sudo -E LD_LIBRARY_PATH=”$GLOBAL_LD_LIBRARY_PATH” “$@”
We believe it might have to do with the version of python being in microk8s does not have FIPS support for OpenSSL. It appears python was updated sometime from 3.5 in 1.19 to 3.6 in 1.21. Did microk8s package a FIPS enabled python 3.5 in 1.19? Does you have any suggested workarounds? Am I going down the wrong path?
Thanks for any help.