If you are using the same fipscanister (that was properly built), there is no need to revalidate. Any other situation that has a validation doesn't follow the supported validation, and the answer cannot be found here.
-Kyle H On Jan 29, 2014 10:24 PM, "sam1982" <ajay_sonaw...@symantec.com> wrote: > Thanks Stevan for prompt reply. > > Just to confirm, you are saying that even if I upgrade openssl to 1.0.1f > from 1.0.1c, fips validation which is done on older version of openssl > libeay32.dll(1.0.1c) holds true. There is no change in FIPS object module > and validation is already done around 4 months ago. Please confirm my > understandings. > > Ajay > > > > -- > View this message in context: > http://openssl.6102.n7.nabble.com/FIPS-revalidation-after-openssl-vulnerability-fix-tp48343p48353.html > Sent from the OpenSSL - Dev mailing list archive at Nabble.com. > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > Development Mailing List openssl-dev@openssl.org > Automated List Manager majord...@openssl.org >