Stephen A. Zarkos

Package mod_auth_openidc has been released to the AL2023 repositories. Please give it a test and let us know if you have questions.

Regarding FIPS mode for the AL2023 container - to enable FIPS in the container then you need to enable FIPS on the host. For example, if you enable FIPS on...

This should have been fixed via the following updates: selinux-policy-38.1.50-1.amzn2023.0.1 chrony-4.3-1.amzn2023.0.5 If you're still seeing issue please let us know, thanks!

Amazon Linux 2023.7 (2023.7.20250331) has rebased OpenSSL to v3.2.2. Please test. See also, AL2023.7 Release Notes: https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.7.html

Amazon Linux 2023.7 (2023.7.20250331) has rebased OpenSSL to v3.2.2. Please test. See also, AL2023.7 Release Notes: https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.7.html

I have no plans to share today, although it should be technically feasible. Are there specific features or fixes in OpenSSL-3.4.1 that you require? Distros may also opt to wait...

The `openssl-fips-provider-latest` package is installed by default. Instructions for swapping the FIPS provider can be found in the user guide: https://docs.aws.amazon.com/linux/al2023/ug/fips-openssl-swap-provider.html If you want to downgrade openssl entirely, then you...

User guide doc about this for future reference: https://docs.aws.amazon.com/linux/al2023/ug/fips-openssl-swap-provider.html