feat: add support for FIPS bouncy castle kubernetes-client#3590

Prefer FIPS version of bouncy castle if available. Otherwise, fallback to non FIPS version.

Author: robhafner

util/src/main/java/io/kubernetes/client/util/SSLUtils.java

@@ -24,6 +24,7 @@
 import java.security.KeyStoreException;
 import java.security.NoSuchAlgorithmException;
 import java.security.PrivateKey;
+import java.security.Provider;
 import java.security.Security;
 import java.security.UnrecoverableKeyException;
 import java.security.cert.Certificate;
@@ -42,8 +43,27 @@
 import org.bouncycastle.util.io.pem.PemWriter;
 
 public class SSLUtils {
+
   static {
-    Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
+    Provider provider;
+    try {
+      Class clazz  = getProvider();
+        provider = (Provider) clazz.getDeclaredConstructor(null).newInstance();
+    } catch (Exception e) {
+        throw new RuntimeException(e);
+    }
+
+    Security.addProvider(provider);
+  }
+
+  public static Class getProvider() throws ClassNotFoundException {
+    Class clazz;
+    try {
+      clazz = Class.forName("org.bouncycastle.jcajce.provider.BouncyCastleFipsProvider");
+    } catch(ClassNotFoundException cnf) {
+      clazz = Class.forName("org.bouncycastle.jce.provider.BouncyCastleProvider");
+    }
+    return clazz;
   }
 
   public static boolean isNotNullOrEmpty(String val) {