You need to compile the FIPS module and then a version of OpenSSL that
uses that module. See https://www.openssl.org/docs/fips/UserGuide.pdf
for links to appropriate documentation, depending on which version of
the FIPS module you need to use (probably the latest one if you don't
know you need th
> On Feb 4, 2016, at 10:13 AM, Lesley Kimmel wrote:
>
> All;
>
> I'm working with PosgreSQL in a DoD environment and am supposed to enforce
> FIPS operation. PostgreSQL doesn't perform a call to FIP_mode_set() but does
> provide a configuration item 'ssl_ciphers'. Is there more to FIPS_mode th
> On Mar 2, 2016, at 12:27 PM, Neptune wrote:
>
> Using OpenSSL 1.0.1l
>
> I just learned the painful way that OpenSSL_add_all_digests() is not a
> thread-safe function. I had been calling this in the constructor of a class
> providing hash functions for multiple threads. My question is, how do
> On Mar 21, 2016, at 10:23 AM, Alfonso Coscione wrote:
>
> Hi OpenSSL Staff,
>
> sorry for disturb.
> I'm an italian young engineer and I'm working on new software project
> that wuold want to use yours openssl library to realize an
> encryption/decryption protocol to use for downloading updat
> On Apr 21, 2016, at 3:06 AM, Tim Culhane wrote:
>
> Hi all,
>
> My company makes calls to functions in the openssl source and thus includes
> header files defined in the openssl library.
>
> Typically these header files were gathered together in a simgle place, under
> include/openssl by way
tional cases, which you
can’t for something like this). You could always prepend a MIME header, but
that wouldn’t make your output a MIME body.
TOM
--
+-+----+
| Thomas Francis, Jr. |Preserve wildlife --|
| thomas.francis.
> On Jul 27, 2016, at 8:18 PM, pratyush parimal
> wrote:
>
> Hi all,
>
> I work on a consumer application which is striving to be fips-140-2 compliant.
>
> I'm using OpenSSL as recommended in the fips guide by invoking
> fips_mode_set(). However, in certain parts of the same application, I'm
graphic
algorithm, and what’s a cryptographic purpose). You might be able to get away
with it, but I wouldn’t want to stake a sale on it. Especially not if there
are penalties attached for failing an audit.
TOM
> Thanks,
> Pratyush.
>
> On Thu, Jul 28, 2016 at 10:23 AM, Thomas Franc
> On Aug 2, 2016, at 1:59 PM, jonetsu wrote:
>
> The current FIPS User Guide mentions:
>
> "3.3 Creation of Shared Libraries
>
> The FIPS Object Module is not directly usable as a shared
> library, but it can be linked into an application that is a
> shared library. A “FIPS compatible” Ope
> On Aug 4, 2016, at 11:00 AM, o haya wrote:
>
> Hi,
>
> I've been tasked to look into FIPS 140-2 "compliance" for our systems,
> overall, and I know that there's a "FIPS 140-2 module" for OpenSSL, that
> needs to be built from source and then integrated into OpenSSL by building
> OpenSSL wi
What’s the replacement for code that used SKM_ASN1_SET_OF_i2d in OpenSSL 1.1?
The code I’ve got that calls this function is getting the DER encoding of a
STACK_OF() as a sorted SET. This STACK_OF() is of a custom ASN1 type; and is a
member of another structure that is also a custom ASN1 struct
On 5/10/17 3:55 AM, 共通基盤SSL[業務ID] / COMMONSSL,GYOUMU wrote:
Hello,
I will build OpenSSL on SUSE Linux Enterprise Server for z Systems.
But, there is not yet the machine for build, so I cannot do actual
machine verification.
The CPU is not Intel architecture, is probably z/Architecture.
I wa
12 matches
Mail list logo