Hello,
I think there is a bug in EVP_get_digestbyname when argument passed is SHA
because it returns NULL. It only happens to me with SHA, I try with
others algorithms like MD5 and SHA1 and no problem.
Regards,
Fernando Moya
Item #2: typically FIPS-140 certified code is delivered as a binary, tested
by a lab and checked at both source and binary level, so the opportunity to
modify is not there (DAC test will fail). With OpenSSL source that's not
the case unless the developer of the product (who creates the binaries)
Hi!
As I have just been informed, the Internet connectivity of the university
will be down due to major restructurings in the power supply system
from Friday (05 Sep 2003) afternoon until Monday (08 Sep 2003) morning
(central european daylight savings time).
The OpenSSL request tracker hosted in
On Fri, 2003-09-05 at 11:55, Ben Laurie wrote:
- What version of OpenSSL does it correspond to? 0.9.7b?
Yes, and the FIPS specific routines will be carried forward in future
OpenSSL releases. Only the cryptographic module containing the
relevant cryptographic module implementations is
If I read your reply right, responsibility for DAC and Known Answer Test
checking is the responsibility of the app developer, though you will provide
the DAC checksum for the crypto module. Have you also included the KATs,
since they essentially exist the OpenSSL test modules?
Since OpenSSL is
It is unfortunate that the process could not
have been more open, but I considered the goal worth that sacrifice,
Not a problem for me. :)
This is great -- one of the most exciting things I've seen in a long time!
/r$
--
Rich Salz, Chief Security Architect
DataPower Technology
Mathias Brossard wrote:
On Fri, 2003-09-05 at 11:55, Ben Laurie wrote:
- What version of OpenSSL does it correspond to? 0.9.7b?
Yes, and the FIPS specific routines will be carried forward in future
OpenSSL releases. Only the cryptographic module containing the
relevant cryptographic module
Chris Brook wrote:
If I read your reply right, responsibility for DAC and Known Answer Test
checking is the responsibility of the app developer, though you will provide
the DAC checksum for the crypto module. Have you also included the KATs,
since they essentially exist the OpenSSL test