On 09/12/2011 05:27 AM, Jiri Hladky wrote: > Hello, > > I would like to use CTR DRBG random number generator. It's part of > the FIPS-2. > > I have downloaded the CVS tree and found fips_rand.h which defines > functions I would like to use: > > FIPS_drbg_init > FIPS_drbg_instantiate > FIPS_drbg_generate > FIPS_drbg_reseed > > However, I'm not able to link these functions with my application. I > have compiled openssl using sources from CVS > > ./config > make > make check > make install > > but in the installation directory I'm missing > fips_rand.h > I have also checked the functions which are ready in openssl library > but the functions above are missing there. > > can you please give me a hint how to compile FIPS-2 and link it with > my application? > > Thanks a lot! > Jiri
I assume that by "FIPS-2" you mean the "OpenSSL FIPS Object Module 2.0" that is now in the middle of the FIPS 140-2 validation process. Are you sure you really want to try calling FIPS_*() functions directly? That's not an intended use of the FIPS module. It is designed for use via the standard API of a "FIPS capable" OpenSSL. As for building, see http://www.mail-archive.com/openssl-dev@openssl.org/msg29421.html. -Steve M. -- Steve Marquess OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 21710 USA +1 877-673-6775 marqu...@opensslfoundation.com
