On Thu, May 04, 2006, BAO, ROBERT wrote: > Thanks for the reply, Steve. > > Since the 0.9.7j version was just out, I got a copy and tried again. This > time I got the following error: > > The file fipscanister.o could not be located. Please build and install the > FIPS module using the instructions in the user guide before compiling > OpenSSL > in FIPS mode. Ensure that the correct path to the FIPS module directory > has been given to the --with-fipslibdir option. > > > What went wrong this time? >
It can't find the validated fips module and associated files. > Because the error is totally different than that for version > OpenSSL-fips-1.0, not to confuse other people, I didn't attach my previous > post. However, in your reply you did mention that "The build instructions > have to be followed to the letter for the validated FIPS module." Could you > please let me know (or point a web link to me) the detailed instructions? > > There's a user guide being prepared which will give more details. Basically to be covered by this certification you can *only* do: ./config fips make make install from the validated source to compile fipscanister.o no other options are permitted and no source files can be changed. If that doesn't work then it isn't covered by the current certification. Because the new source releases aren't validated they link against fipscanister.o and friends which have been compiled from the validated source. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
