Run function init container in fips140=only mode when function controller is running in FIPS mode

[kwiatekus]

Description

Set GODEBUG env variable of function init container to fips140=only whenever function controller is run in fips mode as identiffied by APP_KYMA_FIPS_MODE_ENABLED env

Reasons

All containers on ns2 region must run with fips140=only setting

Acceptance Criteria

• init container should panic when not started with GODEBUG fips140=only flag in case controller is running in FIPS mode

Testing Strategy (DoD)

• unit test checking that godebug env is properly set for init container when operating in fips mode

[pPrecel]

QA

I've installed serverless from the 249522344669b9029879addfa81e9e1dbef8bb35 commit

🟢 I've installed serverless in fips-mode and deployed a function based on this tutorial.

The created function has expected envs:

$ kubectl get pod test-git-vvxzg-76cd57d999-n6xnj -oyaml

apiVersion: v1
kind: Pod
metadata:
  name: test-git-vvxzg-76cd57d999-n6xnj
  namespace: default
...
spec:
  initContainers:
...
    env:
    - name: APP_KYMA_FIPS_MODE_ENABLED
      value: "true"
    - name: GODEBUG
      value: fips140=only,tlsmlkem=0
...
status:
  phase: Running
...