[kudu-CR] KUDU-3210 Add option to enforce FIPS approved mode

Attila Bukor (Code Review) Fri, 30 Oct 2020 12:34:39 -0700

Hello Tidy Bot, Alexey Serbin, Kudu Jenkins, Andrew Wong, Grant Henke, Wenzhe 
Zhou,


I'd like you to reexamine a change. Please visit

    http://gerrit.cloudera.org:8080/16657

to look at the new patch set (#12).

Change subject: KUDU-3210 Add option to enforce FIPS approved mode
......................................................................

KUDU-3210 Add option to enforce FIPS approved mode

If KUDU_REQUIRE_FIPS_MODE is set to "1", "true" or "yes", Kudu checks if
FIPS mode is enabled and crashes when initializing OpenSSL if not. This
is also true for Kudu C++ client applications.

On initializing OpenSSL, Kudu now also verbose logs (level 2) if FIPS
mode is enabled regardless of whether it's required or not.

Change-Id: I98a6a8b3330ea0b372b188690fadd4d312d8bf93
---
M src/kudu/security/openssl_util.cc
M src/kudu/util/flags.cc
M src/kudu/util/flags.h
M src/kudu/util/test_util.cc
4 files changed, 48 insertions(+), 41 deletions(-)


  git pull ssh://gerrit.cloudera.org:29418/kudu refs/changes/57/16657/12
--
To view, visit http://gerrit.cloudera.org:8080/16657
To unsubscribe, visit http://gerrit.cloudera.org:8080/settings

Gerrit-Project: kudu
Gerrit-Branch: master
Gerrit-MessageType: newpatchset
Gerrit-Change-Id: I98a6a8b3330ea0b372b188690fadd4d312d8bf93
Gerrit-Change-Number: 16657
Gerrit-PatchSet: 12
Gerrit-Owner: Attila Bukor <[email protected]>
Gerrit-Reviewer: Alexey Serbin <[email protected]>
Gerrit-Reviewer: Andrew Wong <[email protected]>
Gerrit-Reviewer: Attila Bukor <[email protected]>
Gerrit-Reviewer: Grant Henke <[email protected]>
Gerrit-Reviewer: Kudu Jenkins (120)
Gerrit-Reviewer: Tidy Bot (241)
Gerrit-Reviewer: Wenzhe Zhou <[email protected]>

[kudu-CR] KUDU-3210 Add option to enforce FIPS approved mode

Reply via email to