Stowage/go
2
0
Fork 0
mirror of https://github.com/golang/go.git synced 2025-12-07 13:50:04 +00:00
Code Issues Projects Releases Packages Wiki Activity
go/doc/next/6-stdlib/99-minor/crypto/fips140/74630.md
Daniel Morsing 86bbea0cfa crypto/fips140: add WithoutEnforcement 
WithoutEnforcement lets programs running under GODEBUG=fips140=only
selectively opt out of strict enforcement. This is especially helpful
for non-critical uses of cryptography routines like SHA-1 for content
addressable storage backends (E.g. git).

Fixes #74630

Change-Id: Iabba1f5eb63498db98047aca45e09c5dccf2fbdf
Reviewed-on: https://go-review.googlesource.com/c/go/+/723720
Reviewed-by: Dmitri Shuralyov <dmitshur@google.com>
Reviewed-by: Filippo Valsorda <filippo@golang.org>
Auto-Submit: Filippo Valsorda <filippo@golang.org>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Roland Shoemaker <roland@golang.org>
2025-11-26 14:26:06 -08:00

161 B
Raw Blame History

The new [WithoutEnforcement] and [Enforced] functions now allow running in GODEBUG=fips140=only mode while selectively disabling the strict FIPS 140-3 checks.