Port missing commits from opensl-fips/openssl #2
Conversation
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.4 to 4.35.5. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@68bde55...9e0d7b8) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cherry picked from commit 9a45cc30f671448aef6afc5da24d1c36b8c2a0c2)
* go1.26: fips without enforcement support for hkdf and hmac Allow setting key-check:0 hmac and kdf param, when executing code without enforcement. This improves compatibility with go1.26 APIs allowing to relax enforcement which is required for approved TLS purposes, as well as to support deprecated, legacy use-cases for verifying existing calculations. Also note that PBKDF will start to enforce lower limits, thus similarly PBKDF should be ported to the EVP KDF APIs to be able to also set a similar indicator. Add test case with GODEBUG=fips140only, note that not all test cases pass under such mode. * Always set fips params (cherry picked from commit 93493078e5fcfbea99c160de0a4493294d67e16f)
(cherry picked from commit 87dff5e933fcd887ee44838b697f30955b918f43)
(cherry picked from commit 8ca65ead394b1c8a9981c2a651fdf2e237d1d814)
Benchmark Results✅ ❌
|
3 participants
No description provided.