On Fri, Sep 11, 2009, Lin Hwang wrote:
Hi,
I am an Openssl newby. Recently I am trying to build FIPS module and FIPS
capable lib on a Linux system.
I notice that all the fips_xxxtest programs at link time all go through
fipsld and linked with a digest. I expect
the same thing with
Hi,
I am an Openssl newby. Recently I am trying to build FIPS module and
FIPS capable lib on a Linux system.
I notice that all the fips_xxxtest programs at link time all go through
fipsld and linked with a digest. I expect
the same thing with application openssl, but I don't see it happens
Because the 'fipsld' script isn't actually necessary to pass FIPS
validation. The steps that that script does are necessary to maintain
validation, but they can be done by anything (once the FIPS canister
is created, anyway). Try setting OPENSSL_FIPS=1 in your
environment, and make sure that the
