Skip to content

[9.1](backport #5562) Bump Go version to 1.25.1 #5584

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 1, 2025
Merged

[9.1](backport #5562) Bump Go version to 1.25.1 #5584

merged 1 commit into from
Oct 1, 2025

Conversation

@mergify
Copy link
Contributor

@mergify mergify bot commented Oct 1, 2025

This PR bumps up the Golang version to 1.25.1. It also:

  • removes the ms_tls13kdf Golang build tag when building in FIPS mode because this tag was only needed with Golang versions 1.24.x.
  • sets ths GODEBUG=tlsmlkem=0 environment variable when running FIPS140-only unit tests. This prevents errors like so: Failed to connect: crypto/ecdh: use of X25519 is not allowed in FIPS 140-only mode.
    This is an automatic backport of pull request Bump Go version to 1.25.1 #5562 done by Mergify.

@ycombinator @mergify
Bump Go version to 1.25.1 (#5562)
8adf22a 
* Bump Go version to 1.25.1

* Update CHANGELOG entry

* Bump the version of golangci-lint

* Remove references to the ms_tls13kdf build tag

* Download go module dependencies before GODEBUG=fips140=only is set

* Exclude X25519 curve types when testing in FIPS-140 mode

* Stricter check

* Add missing license header

* Exclude X25519 curve types when testing in FIPS-140-only mode

* Use stricter check

* Update NOTICE files

* Remove IsFIPS140Only helper function

* Set GODEBUG=tlsmlkem=0 for FIPS140-only unit tests

* Remove replace directive from go.mod

* Try not pre-downloading dependencies

(cherry picked from commit 15b8c8a)
@mergify mergify bot requested a review from a team as a code owner October 1, 2025 13:47
@mergify mergify bot added the backport label Oct 1, 2025
@mergify mergify bot requested review from blakerouse and michalpristas October 1, 2025 13:47
@mergify mergify bot added the backport label Oct 1, 2025
@mergify mergify bot mentioned this pull request Oct 1, 2025
Merged
@prodsecmachine
Copy link

prodsecmachine commented Oct 1, 2025
edited
Loading

🎉 Snyk checks have passed. No issues have been found so far.

security/snyk check is complete. No issues have been found. (View Details)

license/snyk check is complete. No issues have been found. (View Details)

@github-actions
Copy link
Contributor

github-actions bot commented Oct 1, 2025

🔍 Preview links for changed docs

@ycombinator ycombinator merged commit bd5ece0 into 9.1 Oct 1, 2025
12 checks passed
@ycombinator ycombinator deleted the mergify/bp/9.1/pr-5562 branch October 1, 2025 15:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ycombinator ycombinator ycombinator approved these changes

@michalpristas michalpristas Awaiting requested review from michalpristas michalpristas is a code owner automatically assigned from elastic/elastic-agent-control-plane

@blakerouse blakerouse Awaiting requested review from blakerouse blakerouse is a code owner automatically assigned from elastic/elastic-agent-control-plane

Assignees

@ycombinator ycombinator

Labels

backport

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@prodsecmachine @ycombinator