On Wed, Jul 24, 2019 at 7:20 AM Jan Just Keijser <janj...@nikhef.nl> wrote:
> On 24/07/19 12:29, Jan Just Keijser wrote: > > The openssl library on RHEL/CentOS 7 is indeed FIPS compliant, but FIPS > mode still needs to be explicitly enabled inside an application, usually > using FIPS_mode_set(). > You can check whether your version of OpenVPN has been patched to do this > by running: > > # objdump -tT /usr/sbin/openvpn | grep FIPS > > ( no output, meaning no FIPS calls ) > > As a follow-up, meant to confirm the patch: $ objdump -tT /home/maintuser/openvpn-2.4.7/src/openvpn/openvpn|grep FIPS 0000000000000000 F *UND* 0000000000000000 FIPS_mode_set@ @libcrypto.so.10 0000000000000000 DF *UND* 0000000000000000 libcrypto.so.10 FIPS_mode_set
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
