Re: [openssl-users] FIPS 3.0 Canister Status

And also the last paragraph of our most recent blog entry, which says this: We also decided that the primary focus of the next feature release after 1.1.1 will be FIPS. We know that FIPS is very important to some, not all, members of our community and we are committed to addressing this. We don’

Re: [openssl-users] error 20 at 0 depth lookup:unable to get local issuer certificate error

> On Jan 25, 2018, at 4:59 AM, Oleg Smelkoff wrote: > > As I tought, reason of that problem was incorrect AKID of EE-certificate, > cause AKID has to identify the issuer of the issuer, That is indeed the problem, but your statement above is not accurate. In the AKID extension the following rul

Re: [openssl-users] FIPS 3.0 Canister Status

You might be interested in the following two blog posts: https://www.openssl.org/blog/blog/2017/07/25/fips/ https://www.openssl.org/blog/blog/2017/08/17/fips/ Matthias On 25.01.2018 16:34, xemdetia . wrote: > Hey all, > > Back in 2016 there was a news post found > https://www.openssl.org/blog

[openssl-users] FIPS 3.0 Canister Status

Hey all, Back in 2016 there was a news post found https://www.openssl.org/blog/blog/2016/07/20/fips/ about the OpenSSL 1.1.x FIPS canister. I had also read about an relatively sensible schedule: https://www.safelogic.com/openssl-1-1-update/ I haven't heard anything since, and it would be exciting

Re: [openssl-users] Release Strategy

On 25/01/18 14:07, REIX, Tony wrote: > Hi, > > We (ATOS BullFreeware project) are building and delivering OpenSSL on > AIX. However, there are different providers of OpenSSL on AIX (IBM > AIX project, Perzl, Bull Freeware, IBM AIX Toolbox), and we have some > compatibility issues when mixing RPM

[openssl-users] Release Strategy

Hi, We (ATOS BullFreeware project) are building and delivering OpenSSL on AIX. However, there are different providers of OpenSSL on AIX (IBM AIX project, Perzl, Bull Freeware, IBM AIX Toolbox), and we have some compatibility issues when mixing RPMs depending on OpenSSL and built with different v

Re: [openssl-users] Building/Running fips enabled Openssl application

The current FIPS only supports dynamic libraries. You should try to get the email disclaimer removed when you post to a public email list. From: Emre BAYRAM Reply-To: openssl-users Date: Thursday, January 25, 2018 at 1:30 AM To: openssl-users Subject: [openssl-users] Building/Running fips en

[openssl-users] error 20 at 0 depth lookup:unable to get local issuer certificate error

Hi All! I've encountered same problem such in this topic: http://openssl.6102.n7.nabble.com/Getting-crazy-with-quot-error-20-at-0-depth-lookup-unable-to-get-local-issuer-certificate-error-quot-td21109.html#none but it wasn't help me I have 2 chains, and try to verify EE-certificates with CApath o