docs: update FIPS documentation with newer validation procedures (!166045) · Merge requests · GitLab.org / GitLab

Andrew Newdigate OoO requested to merge an/fips-docs into master Sep 13, 2024

This updates the FIPS documentation with a newer procedure for validating that a Go-compiled binary has been correctly linked against the BoringSSL library.

My understanding is that versions of Golang-FIPS > 1.20 need a newer updated method to validating that the FIPS library is being used.

Further discussion on this change is available at:

https://stackoverflow.com/questions/75638176/how-can-i-check-whether-my-golang-app-uses-boringcrypto-instead-of-the-native-go
https://github.com/rsc/goversion/commit/3a30cee7003ec5dc0903682e79b3059c8e101952
https://github.com/rsc/goversion/pull/21

Edited Sep 13, 2024 by Andrew Newdigate OoO

docs: update FIPS documentation with newer validation procedures

Merge request reports