On Thu, May 28, 2009, Bob Bell wrote: > > I have a basic question relative to the FIPS openSSL lib and US export > control law. As I understand it, in order for the openSSL lib to run as a > FIPS certified module, it must be configured to be loaded as a dynamically > linked library. >
No that isn't correct. You can statically link an application but you need to modify the linking procedure to use fipsld or an equivalent. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
