| From: | "McDermott, Becky" <bmcderm(at)sandia(dot)gov> |
|---|---|
| To: | Dave Cramer <davecramer(at)postgres(dot)rocks> |
| Cc: | Sehrope Sarkuni <sehrope(at)jackdb(dot)com>, Michael Paquier <michael(at)paquier(dot)xyz>, "pgsql-jdbc(at)lists(dot)postgresql(dot)org" <pgsql-jdbc(at)lists(dot)postgresql(dot)org> |
| Subject: | RE: [EXTERNAL] Re: Java client connection problem on FIPS enabled hosts (with password_encryption = scram-sha-256) |
| Date: | 2022-03-30 14:30:53 |
| Message-ID: | BY3PR09MB862790B1D8635D3B176EB7ABC81F9@BY3PR09MB8627.namprd09.prod.outlook.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-jdbc |
>> From: Dave Cramer <davecramer(at)postgres(dot)rocks>
>> Sent: Wednesday, March 30, 2022 8:26 AM
>>
>> Thanks, although the driver doesn't have much to do with the problem here. As others have mentioned I suspect this is a JVM implementation issue.
I think it is probably related to the underlying container OS (Red Hat UBI 8). We looked at the Dockerfile for building the openjdk11 image and it’s really not doing anything special or different than what we are doing to install openjdk into our container. But, the base image may need to explicitly enable FIPS. There is a Red Hat article that indicates that but waiting for the guy who has a Red Hat login to come in and download it for me.
Once we get the UBI 8 issue figured out, I will re-post.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dave Cramer | 2022-03-31 15:36:57 | [pgjdbc/pgjdbc] aa1f58: Remove isDeprecated from PGProperty. It was origin... |
| Previous Message | Dave Cramer | 2022-03-30 14:26:20 | Re: [EXTERNAL] Re: Java client connection problem on FIPS enabled hosts (with password_encryption = scram-sha-256) |