On Tue, Oct 12, 2010 at 6:26 PM, Dr. Stephen Henson wrote:
> On Tue, Oct 12, 2010, Vivek Madani wrote:
>
>>
>> Are you using fipslink.pl to statically link FIPS module to your
>> application/dll? If not, I believe you need to use it to comply to
>> OpenSSL FIPS security policy.
>>
>
> You don't ne
Hello Steve,
Good eye! That got rid of the compilation error.
However, FIPS_mode_set(1) fails when it gets called from a "shared"
library that links with the "static" version of the FIPS-capable
OpenSSL library.
Calling FIPS_mode_set(1) works fine when called directly from an
executable
On Tue, Oct 12, 2010, Bill wrote:
> Hello,
>
> I have followed the FIPS UserGuide 1.2 to build a FIPS object module and a
> FIPS capable OpenSSL.
>
> I used openssl-fips-1.2.tar.gz and openssl-0.9.8o.tar.gz to build these.
>
> On Ubuntu, when I try to build a shared library that links with the
>
Hello,
I found a workaround by linking with the FIPS capable "shared" library.
Please let know if any one has been successful in building a shared
library on linux that links with the FIPS capable "static" library.
Thanks,
Bill
On Oct 12, 2010, at 12:33 PM, Bill wrote:
Hello again,
Here
Hello again,
Here is a better example that shows the problem. I would appreciate
any clues on how to solve this.
$ cat foo.cpp
#include
#include
int
fips_check()
{
if (FIPS_mode_set(1) == 0) {
printf("Failed to enable FIPS mode\n");
} else {
I noticed that there is an AES-based FIPS implementation distributed
with validated FIPS version based upon 0.9.8.
Does 1.0.0 have an X9.31 compliant RNG available?
Thank you,
Bill
Hello,
I have followed the FIPS UserGuide 1.2 to build a FIPS object module
and a FIPS capable OpenSSL.
I used openssl-fips-1.2.tar.gz and openssl-0.9.8o.tar.gz to build these.
On Ubuntu, when I try to build a shared library that links with the
FIPS-capable OpenSSL static library, I get th
In another hi-jacked thread I think it was determined that the current
OpenSSL BIO API does not support 64bit operations. This post is to
request that such support be added to OpenSSL.
With the 32bit operating systems disappearing fast on desktops and
servers, with the ever-increasing involvement
As far as I understand the HMAC-SHA1-SIG is something that is passed
while compiling the fips_premain.c. And this is taken care by fipsld.
Actually fipsld obtains this signature by executing the binary that is
linked with fips_premain.o and recompiles the fips_premain.c by passing
that signature ..
On Tue, Oct 12, 2010, Vivek Madani wrote:
>
> Are you using fipslink.pl to statically link FIPS module to your
> application/dll? If not, I believe you need to use it to comply to
> OpenSSL FIPS security policy.
>
You don't need to use fipslink.pl or fipsld but if you don't you have to
provide
On Tue, Oct 12, 2010, Lee Merrill wrote:
> I had a problem after building as well, I built the fips-mode (version 1.2)
> of openssl on LInux via running "./config fipscanisterbuild" and then
> "make", this builds fine, and "make test" works, only fipscanister.o
> doesn't have the strings that f
On Tue, Oct 12, 2010, rajesh kumar wrote:
> Hi All,
>
> i am very new to OpenSSL build ...
>
> I have build the static build of FIPS Capable OpenSSL as mentioned in user
> guide 1.2.
>
> I have used following commands on VS2005 Command Prompt...
>
> *Build FIPS Module : ms\do_fips no-asm*
> *
I had a problem after building as well, I built the fips-mode (version
1.2) of openssl on LInux via running "./config fipscanisterbuild" and
then "make", this builds fine, and "make test" works, only
fipscanister.o doesn't have the strings that fipsld expects, when I run
"strings fipscanister.o
On Tue, Oct 12, 2010 at 4:37 PM, rajesh kumar wrote:
> Hi All,
> i am very new to OpenSSL build ...
> I have build the static build of FIPS Capable OpenSSL as mentioned in user
> guide 1.2.
> I have used following commands on VS2005 Command Prompt...
> Build FIPS Module : ms\do_fips no-asm
> Set C
Hi All,
i am very new to OpenSSL build ...
I have build the static build of FIPS Capable OpenSSL as mentioned in user
guide 1.2.
I have used following commands on VS2005 Command Prompt...
*Build FIPS Module : ms\do_fips no-asm*
*
*
*Set Confiugration : perl Configure VC-WIN32
--with-fipslibdir=
15 matches
Mail list logo
