crypto: test fips140=only mode

golang / go

The Go programming language

https://go.dev

BSD 3-Clause "New" or "Revised" License

124.28k stars 17.7k forks source link

crypto: test fips140=only mode #70514

Open FiloSottile opened 3 days ago

FiloSottile commented 3 days ago

fips140=only from #70123 breaks any non-FIPS cryptography. Testing a mode designed to break things is tricky.

Running the whole test suite is prohibitive. Instead, we should probably write a dedicated test that goes through things that are expected to work, and things that are not expected to work.

gopherbot commented 3 days ago

Change https://go.dev/cl/631018 mentions this issue: crypto: implement fips140=only mode

gabyhelp commented 3 days ago

Related Code Changes

crypto: implement fips140=only mode

_{(Emoji vote if this was helpful or unhelpful; more detailed feedback welcome in this discussion.)}