| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Mark Wong <markwkm(at)gmail(dot)com>, Álvaro Herrera <alvherre(at)alvh(dot)no-ip(dot)org>, pgsql-hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org>, buildfarm(at)enterprisedb(dot)com |
| Subject: | Re: New buildfarm animals with FIPS mode enabled |
| Date: | 2025-02-17 19:03:39 |
| Message-ID: | 1CB7E685-9D71-4690-860F-5533119C0997@yesql.se |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> On 17 Feb 2025, at 17:26, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
>
> Mark Wong <markwkm(at)gmail(dot)com> writes:
>> On Feb 17, 2025, at 2:36 AM, Álvaro Herrera <alvherre(at)alvh(dot)no-ip(dot)org> wrote:
>>> As I understand, both of these Ubuntu versions ship with OpenSSL 1.1,
>>> though of course OpenSSL 3 could be installed on them. Should I just
>>> delete these requests?
>
>> I’m away from my desk until later this week so I don’t recall whether Ubuntu with FIPS is supposed to work. If someone already knows I’m ok with deleting them. Otherwise I will double check soon…
>
> I believe the main concern is OpenSSL 1.x versus 3.x, not a specific
> platform.
Isn't it postgres version mostly? We fixed so the testsuite passed on FIPS
enabled machines by just not using anything that violates FIPS but I don't
remember anything OpenSSL version specific.
--
Daniel Gustafsson
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2025-02-17 19:13:09 | Re: Clarification on Role Access Rights to Table Indexes |
| Previous Message | Ilia Evdokimov | 2025-02-17 18:53:16 | Re: explain analyze rows=%.0f |