package fips140
Import Path
crypto/fips140 (on go.dev)
Dependency Relation
imports 4 packages, and imported by 4 packages
Package-Level Functions (total 4)
Enabled reports whether the cryptography libraries are operating in FIPS
140-3 mode.
It can be controlled at runtime using the GODEBUG setting "fips140". If set
to "on", FIPS 140-3 mode is enabled. If set to "only", non-approved
cryptography functions will additionally return errors or panic.
This can't be changed after the program has started.
Enforced indicates if strict FIPS 140-3 enforcement is enabled. Strict
enforcement is enabled when a program is run with GODEBUG=fips140=only and
enforcement has not been disabled by a call to [WithoutEnforcement].
Version returns the FIPS 140-3 Go Cryptographic Module version (such as
"v1.0.0"), as referenced in the Security Policy for the module, if building
against a frozen module with GOFIPS140. Otherwise, it returns "latest". If an
alias is in use (such as "inprogress") the actual resolved version is
returned.
The returned version may not uniquely identify the frozen module which was
used to build the program, if there are multiple copies of the frozen module
at the same version. The uniquely identifying version suffix can be found by
checking the value of the GOFIPS140 setting in
runtime/debug.BuildInfo.Settings.
WithoutEnforcement disables strict FIPS 140-3 enforcement while executing f.
Calling WithoutEnforcement without strict enforcement enabled
(GODEBUG=fips140=only is not set or already inside of a call to
WithoutEnforcement) is a no-op.
WithoutEnforcement is inherited by any goroutines spawned while executing f.
As this disables enforcement, it should be applied carefully to tightly
scoped functions.
 |
The pages are generated with Golds v0.8.3-preview. (GOOS=linux GOARCH=amd64) Golds is a Go 101 project developed by Tapir Liu. PR and bug reports are welcome and can be submitted to the issue list. Please follow @zigo_101 (reachable from the left QR code) to get the latest news of Golds. |