On 1/8/2014 10:42 AM, Abdul Anshad wrote:
Hello All,
I noticed in trying to build OpenSSL 1.0.0l that, Configure doesn't
accept the fips and --with-fipsdir= arguments. But, the OpenSSl 1.0.1f
and OpenSSL 0.9.8y accepts the same.
Does that mean that the OpenSSL 1.0.0l wont support fips mode ? is the
branch OpenSSL 1.0.0 still under fips validation ?
OpenSSL 1.0.0 never had a variant with a FIPS validated submodule.
OpenSSL 0.9.8 can be used with the (old) OpenSSL FIPS module 1.0, by (as
one of many steps) compiling OpenSSL 0.9.8 --with-fipsdir=
OpenSSL 1.0.1 can be used with the (current) OpenSSL FIPS module 2.0, by
(as one of many steps) compiling OpenSSL 1.0.1 --with-fipsdir=
In either case, it is technically only the FIPS module and not the
OpenSSL library which is subject to FIPS validation.
(Note: There was no OpenSSL 0.9.9)
Enjoy
Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S. http://www.wisemo.com
Transformervej 29, 2730 Herlev, Denmark. Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
