-
> [!IMPORTANT]
> Nov 20, 2024: The latest version of the proposal is [here](https://github.com/golang/go/issues/70200#issuecomment-2490017956).
_Update_, Nov 11 2024: An updated version is at http…
-
### Search first
- [X] I searched and no similar issues were found
### Description
To comply with regional security requirements, namely the United States Federal Information Processing Standard (F…
-
**What is the bug?**
Current version of OpenSAML (4.3.2) does not work in FIPS mode as it has a hard dependency (`org.bouncycastle.jce.ECNamedCurveTable`) on the non-FIPS distribution of Bouncy Castl…
-
Hello,
it would be nice to replace [this call](https://github.com/elastic/apm-server/blob/f4b8e24ec4828569d47ef590282506d43367885c/internal/beater/config/agentconfig.go#L128) to `md5` with a call to a…
-
**Describe the bug**
When we are running pcks11-provider and FIPS mode is enabled, the provider is loaded by OpenSSL but none of the functions are FIPS compatible so none of them is called or used. T…
-
### OpenTofu Version
```shell
n/a
```
### The problem in your OpenTofu project
OpenTofu does not currently offer a FIPS-compliant build
### Attempted Solutions
n/a
### Proposal
This is a track…
-
**Is your feature request related to a problem? Please describe.**
In #3531 we've learned that the `addfips` package we rely on to map state/county data into a FIPS code is irregularly maintained. Th…
-
Instead of creating the pin files dinamically, we ship those as static files (as was decided for ESM) so we a) standardize how we deal with it and b) leverage all apt/dpkg mechanisms to deal with chan…
-
**Is your enhancement related to a problem? Please describe.**
FIPS 140-3 is a security accreditation program for validating cryptographic modules produced by private companies
**Describe the solu…
-
Two small TODOs that came out of [CR 629736](https://go-review.googlesource.com/c/go/+/629736):
1. In `handshake_server_test.go` the "RSA" and "RSA with ec_point_format" subtests of `TestTLSPointFo…