ZOOKEEPER-4393: [ADDENDUM] Turn off FIPS-mode by default on branch-3.8 #2016
Conversation
There was a problem hiding this comment.
+1
I wonder if this should break some tests...
on master branch the default is "true" that means that all TLS tests require FIPS mode
maybe it is not a big deal, but actually the way we run the tests in which we don't explicitly set this property will run in a different way.
I am still +1 to this patch and I am +1 to commit it without adding/changing existing tests
|
@eolivelli All true, I was thinking about it too. Most tests should be independent from this setting, since it only affects encryption in server-server and client-server comm. Those tests which are affected have already been extended with this setting (I hope). That said, an accurate review is always welcome. Not sure if @symat is around for instance... ;) |
Accidentally enabled for 3.8 too when cherry-picked from master. We need to switch this off to maintain compatibility.
cc @symat