: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Kyle Hamilton
Sent: Friday, December 19, 2008 5:22 PM
To: openssl-users@openssl.org
Subject: Re: FIPS 1.2 and Openssl.
openssl-0.9.8-stable-SNAP-20081219.tar.gz recognizes the 'fips'
configuration
On Sat, Dec 20, 2008 at 3:42 AM, Dr. Stephen Henson wrote:
> On Sat, Dec 20, 2008, Kyle Hamilton wrote:
>> Option 1:
>> ./config fips
>> make
>> make install
>>
>> Option 2:
>> ./config fips no-asm
>> make
>> make install
>>
>
> On the 1.2 distribution you need "fipscanisterbuild" and not "fips".
Kyle Hamilton wrote:
The Security Policy is absolutely clear on this point. (If you
haven't read it yet, you MUST, if you want to claim FIPS validation
for whatever you're putting it into.) You can copy it from /usr/local
to whereever you need it, but in that case you also have to edit the
Make
On Fri, Dec 19, 2008, Collins, Jerry wrote:
> Hello,
> I've been trying to upgrade our FIPS compliant software to use the 1.2
> release. I have to do this for both Windows and Unix. To date I've
> been working on the Unix side but have had a number of problems.
>
> 1) Our original version u
On Sat, Dec 20, 2008, Kyle Hamilton wrote:
> The Security Policy is absolutely clear on this point. (If you
> haven't read it yet, you MUST, if you want to claim FIPS validation
> for whatever you're putting it into.) You can copy it from /usr/local
> to whereever you need it, but in that case y
The Security Policy is absolutely clear on this point. (If you
haven't read it yet, you MUST, if you want to claim FIPS validation
for whatever you're putting it into.) You can copy it from /usr/local
to whereever you need it, but in that case you also have to edit the
Makefile for OpenSSL to loo
On Fri, Dec 19, 2008 at 03:22:17PM -0800, Kyle Hamilton wrote:
> The distribution will ALWAYS look for the FIPS files in
> /usr/local/ssl/fips-1.0/lib/, since that is where they are put when
> you follow the commands given in the Security Policy precisely (as you
> must, if you want the validation
openssl-0.9.8-stable-SNAP-20081219.tar.gz recognizes the 'fips'
configuration parameter.
The distribution will ALWAYS look for the FIPS files in
/usr/local/ssl/fips-1.0/lib/, since that is where they are put when
you follow the commands given in the Security Policy precisely (as you
must, if you w
