dhi: add fips entropy source (#24542)

craig-osterhout · web-flow · commit b402038a4f62 · 2026-03-31T15:37:27.000-07:00
&lt;!--Delete sections as needed --&gt;

## Description

Added FIPs entropy source info

## Related issues or tickets

ENGDOCS-3219

## Reviews


- [ ] Technical review
- [ ] Editorial review

Signed-off-by: Craig Osterhout &lt;craig.osterhout@docker.com&gt;
diff --git a/content/manuals/dhi/core-concepts/fips.md b/content/manuals/dhi/core-concepts/fips.md
@@ -51,6 +51,9 @@ compliance requirements by incorporating components that meet the standard.
 - Docker provides signed test attestations that document the use of validated
   cryptographic modules. These attestations can support internal audits and
   compliance reporting.
+- Entropy sources (random number generation for cryptographic operations) vary
+  by base image. Debian-based images use the OpenSSL entropy source, while
+  Alpine-based images source entropy from the host kernel.
 
 > [!NOTE]
 >

Original file line number	Diff line number	Diff line change
`@@ -51,6 +51,9 @@ compliance requirements by incorporating components that meet the standard.`
`51`	`51`	`- Docker provides signed test attestations that document the use of validated`
`52`	`52`	`cryptographic modules. These attestations can support internal audits and`
`53`	`53`	`compliance reporting.`
	`54`	`+- Entropy sources (random number generation for cryptographic operations) vary`
	`55`	`+ by base image. Debian-based images use the OpenSSL entropy source, while`
	`56`	`+ Alpine-based images source entropy from the host kernel.`
`54`	`57`
`55`	`58`	`> [!NOTE]`
`56`	`59`	`>`