#11866 Add OpenSSL FIPS mode CI job using CentOS Stream 9#12585
#11866 Add OpenSSL FIPS mode CI job using CentOS Stream 9#12585stratakis wants to merge 1 commit intotwisted:trunkfrom
Conversation
|
The jobs will most possibly fails ofc as twisted is not yet compatible with FIPS mode. |
Merging this PR will improve performance by 2.74%
Performance Changes
Comparing 
|
|
It looks that it works as intended. FIPS is found as active, and there are 14 failures and 506 errors from various md5 calls. |
stratakis
force-pushed
the
fips_CI
branch
2 times, most recently
from
f3b6e46 to
219dc0e
Compare
Run the test suite under FIPS-enabled OpenSSL on CentOS Stream 9 with Python 3.9 and 3.14. Tests that currently fail under FIPS are excluded. With each subsequent fix remove entries from the exclusion list.
|
@glyph changed the approach here to be exclusion based. There are a lot of tests that are skipped on the FIPS jobs, however many are cascading to other tests, so one fix, should cascade to others. Also I've added CentOS Stream 9 here as a testing environment as this is the environment I'm working on. I can also add CentOS Stream 10, any other FIPS supporting environment or let it as is, to have a minimal environment at the beginning. |
1 participant
Scope and purpose
Related to 11866
This PR provides the basic blocks for testing with FIPS mode on C9S
Additionally I've added testing for Python 3.9 (the main system python in C9s) and Python3.14 which is newly added there.