> On 20 Feb 2026, at 15:58, Tom Lane <[email protected]> wrote: > and then people wanting to test on FIPS platforms could just add > -DPG_FIPS_COMPLIANT to their build recipes.
I don't think we will gain much testing that way. My proposal is to ensure that the tests always pass with FIPS enabled coupled with a patch, which Bilal is currently working on, to switch one of the CI jobs to use a FIPS enabled OpenSSL so that we get ongoing testing of such configurations. -- Daniel Gustafsson
