Hi,
My code is using the FIPS capable openssl (0.9.8j) in FIPS Mode.
X509_get_pub_key function is used to retrieve the public key from a signing
certificate.
pubKey = X509_get_pubkey(x509Cert);
The returned pubKey has the FIPS ALLOW Flag set :
if((pubKey->pkey.rsa)->flags & RSA_FLAG
/Zi option needs to be added to CFLAGS. May be it can be considered as a
default option for debug builds of Windows in future releases of OpenSSL
since debugging normally requires stepping into the code.
pankaj227 wrote:
>
> Hi,
>
> I want to use fipscanister.lib along wi
Hi,
I want to use fipscanister.lib along with debugging information (symbols) in
Visual C++. I have changed the following line in do_fips.bat as follows:
perl util\mk1mf.pl dll debug %ASM% %TARGET% >ms\ntdll.mak
This creates out32dll.dbg folder.
I am not able to step into the code using the d
Ok ! I can't modify the fips_premain.c but what If It can't be integrated
into my application as it is. Doesn't it limit the usage of fipscanister.lib
by making it mandatory to have c like application which can use it.
What if I don't use fips_premain.c at all and write my own code to set
FIPS_s
Hi,
In FIPS OpenSSL 1.2, fips_premain.c is produced as an output after doing
ms\do_fips.
A fips_premain.c.sha1 file is also produced containing the SHA1 of the c
file. Does the security policy restricts modification to this file? My
application is in C++ and I need to do changes in this file (lik
The fips_premain_dso.exe is used to generated the hash that can be used to
verify the integrity at run time. Does it work on all executables? Are there
any prerequisites for this executable to work.
Pankaj
--
View this message in context:
http://www.nabble.com/fips_premain_dso.exe-tp25190532p25
Ok! Could you explain the purpose of fips_premain_dso.exe. Will it work on
all executables and dll to produce the in-core hash.
Pankaj
Dr. Stephen Henson wrote:
>
> On Thu, Aug 27, 2009, pankaj227 wrote:
>
>>
>> I am using FIPS object module 1.2 and openssl 0.9.8
I am using FIPS object module 1.2 and openssl 0.9.8j on windows. I built fips
capable openssl static libraries using these two distributions according to
security policy.
Call to FIPS_mode_set(1) is failing if I link my application with this
static library. Upon further debugging I found that th
Thanks Dave,
Using ActiveState Perl solved the problem.
Pankaj
Dave Thompson-4 wrote:
>
>> From: owner-openssl-us...@openssl.org On Behalf Of Pankaj Aggarwal
>> Sent: Tuesday, 25 August, 2009 05:06
>
>> I am using cygwin on windows xp to compile FIPS Openssl 1.2 using
>
