The reasoning is that FIPS is only for customers who need that specific
requirement. It requires using a kernel and other modules that are
certified and are therefore often slightly older than the latest
versions available in the release.
The lack of 20.04 versions is that Ubuntu images in the AWS cloud use a
slightly tweaked kernel that you can see the UA client is attempting to
install. This kernel includes performance and other changes to help it
run best on AWS as a platform.
20.04's base kernel has been FIPS certified and gone through the
process, however, the -aws tweaked one is still going to take some time
as it needs additional certification as a derivative of the base kernel.
We typically don't suggest using the base kernel on AWS as there could
be specific performance impacts or other issues that the -aws customized
kernel is intended to help with.
The short answer to your question is you're attempting to use FIPS in
between the gap of getting the base kernel certified but before the -aws
specific one has completed certification.
All that said, you should not get the error and the team is looking into
how best to proceed given that if a user REALLY wants to use the base
FIPS kernel on -aws they should be able to.
** Changed in: ubuntu-advantage-tools (Ubuntu)
Status: New => Triaged
** Changed in: ubuntu-advantage-tools (Ubuntu)
Importance: Undecided => High
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1939449
Title:
Ubuntu Pro UA fails to enable fips-updates on 20.04
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ubuntu-advantage-tools/+bug/1939449/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
