Hi,
Appreciate any help on following.
In continuation with email sent earlier, for me FINGERPRINT_premain() is
not getting called after failure of FIPS_mode_set().
Background
My 32bit application (Myapp32.exe) uses myFips32.dll which statically links
to FIPS capable openssl and statically to win
*Appreciate any help on the following.*
1.
Built OpenSSL Fips Module and then 'static binaries' of FIPS capable
OSSL which 'statically link to the windows run-time'. Thus, my application
binary (FipsApp.exe) does not depend on OSSL DLLs.
2.
Consumed these static binaries namely
Hi,
Appreciate any help on the following.
1) Built static binaries of FIPS capable OSSL which statically link to the
windows runtime.
2) Consumed these binaries (libeaycompat32.lib, libeayfips32.lib and
ssleay32.lib) into myapp.dll using msincore.pl.
Result
1) FIPS mode gets set and working w
Dear Experts,
Can we build the FIPS object module with static CRT (/MT) on windows?
Can I run 'perl configure' before calling ms/do_fips.bat while building FOM?
Could not infer this from the documents.
Thank you.
Dear Experts,
Why can one not build the OpenSSL FIPS object module (FOM) with /MT on
windows officially?
I read that modifying any flags / steps while building FOM is not allowed.
Is there any complaint workaround for using FOM with an application which
is built with /MT?
Thank you.
Hi,
I am able to run an application using libcurl which in turn uses OpenSSL in
FIPS mode with following configuration
Help requested
Need opinion from seniors who know OpenSSL and libcurl codebase if
following is good from conceptual perspective with respect to OpenSSL,
libcurl.
a) Built static
Hi,
For an application linked to FIPS capable OpenSSL,
1) After calls to FIPS_mode_set() and FIPS_mode() both succeed, is it good
practice to call FIPS_selftest()? Or is this redundant call?
2) Did come across documentation which only hinted that FIPS_mode_set()
calls FIPS_selftest() internall
Hi,
Had to downgrade the OpenSSL used in an application from 1.1.0k to 1.0.2s.
Due to this I have to remove the usage of OPENSSL_thread_stop(), want to
know the equivalent call in OpenSSL 1.0.2s? if applicable.
Did try the documents, change history and source code for help but could
not figure o
Hi,
Can anyone help me with following?
1) Calling FIPS_mode_set() from inside a DLL just after SSL_library_init()
fails with
[error:2D06B06F:lib(45):func(107):reason(111)]
2) This DLL links to
a] static libraries (libeay, libssl, libcompat)from FIPS capable OpenSSL.
b] static libcurl which is a
Hi,
Thank you for the quick answer.
Both the questions have subtle difference. My apology they appear almost
same.
So, to clear my doubts, following is my understanding
a) An application is FIPS 140-2 certified if and only if it links directly
to 'fipscanister.lib'.
b) Application which links t
Dear Experts,
Can you please help with the following questions?
All inputs are appreciated.
a) Can we call an Win32 application built with FIPS Capable OpenSSL as FIPS
140-2 Certified in strict sense?
where FIPS Capable OpenSSL is OpenSSL built using the FOM (fipscanister.lib)
I am seeking clari
Dear Experts,
Can you please help me with the following question?
My win32 desktop application uses 'libcurl' to interact with web service,
in order to get my application FIPS 140-2 certified, following is the plan
which I arrived at after going through the 'User Guide' and 'Security
Policy' pdfs
12 matches
Mail list logo
