OpenSSL should be included

Feature description

Install openssl binary in the base UBI8 image.

To make this change adjust the dockerfile line

# Edit existing dockerfile line
dnf install -y cracklib-dicts openssl && \

Use cases

Creating certificates during container bootstrapping for secure communications. Negotiating SSL communications to outside the cluster services.

Benefits

Openssl is a library used by many applications to engage in cryptographic communication and create certificates. Several applications rely on openssl to handle the SSL negation for outgoing requests and without the libraries it can't make the requests.

Requirements

Install the openssl package

Links / references

Currently only the Openssl Libs are installed, this doesn't install the binary.

docker run -it ubi8:8.3-noopenssl
[root@3eea31c6d43c /]# /usr/bin/openssl
bash: /usr/bin/openssl: No such file or directory
[root@3eea31c6d43c /]# openssl
bash: /usr/bin/openssl: No such file or directory
bash: /usr/bin/openssl: No such file or directory
bash: /usr/bin/openssl: No such file or directory
[root@3eea31c6d43c /]# dnf list installed | grep openssl
openssl-libs.x86_64                           1:1.1.1g-15.el8_3               @System

By making the recommended change, openssl binary becomes available.

docker run -it ubi8:8.3-openssl
[root@4e89f624e0cb /]# openssl
Invalid command ''; type "help" for a list.
[root@4e89f624e0cb /]# /usr/bin/openssl 
OpenSSL> ^C
[root@4e89f624e0cb /]# dnf list installed | grep openssl
openssl.x86_64                                1:1.1.1g-15.el8_3               @ubi-8-baseos
openssl-libs.x86_64                           1:1.1.1g-15.el8_3               @System 

Definition of Done

• Openssl binary is available on UBI8 base image

/cc @ironbank-notifications/feature