Hi,
I'm trying to build FIPS canister for armv5te with thumb support. But build
fails with follwoing error :
arm-linux-androideabi-gcc -I. -I.. -I../include -DOPENSSL_FIPSCANISTER
-fPIC -DOPENSSL_PIC -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN
-DHAVE_DLFCN_H -D__ARM_ARCH_5__ -D__ARM_ARCH_5T__ -D__A
On Thu, Apr 18, 2013, no_spam...@yahoo.com wrote:
> Second try...
>
> The FIPS_rand_set_key and FIPS_rand_seed functions in 0.9.8 appear to have
> been removed in newer OpenSSL FIPS Object Module v2.0.
>
Those functions relate to the old X9.31 PRNG which isn't the default any more
for the 2.0 m
Second try...
The FIPS_rand_set_key and FIPS_rand_seed functions in 0.9.8 appear to have been
removed in newer OpenSSL FIPS Object Module v2.0.
Are there replacements? Or are they not needed anymore? If an application is
in FIPS mode (i.e. the OpenSSL FIPS Object Module is in FIPS mode), can
On Wed, Apr 17, 2013, Ken Goldman wrote:
> On 4/10/2013 5:14 PM, Dr. Stephen Henson wrote:
> >>
> >>Does openssl have any elegant way to cancel an RSA key generation
> >>that's taking too long?
> >
> >At the EVP_PKEY level you can return 0 from the key generation callback to
> >cancel the operatio
On 18 April 2013 00:17, Jakob Bohm wrote:
> This sounds like a gross violation of the Postel principle.
A principle that should be pretty much universally violated.
__
OpenSSL Project http://www.op
On 4/10/2013 5:14 PM, Dr. Stephen Henson wrote:
Does openssl have any elegant way to cancel an RSA key generation
that's taking too long?
At the EVP_PKEY level you can return 0 from the key generation callback to
cancel the operation. See EVP_PKEY_set_cb().
Thanks as always. But where can I
In the OpenSSL API there's a method for looking up certificates/CRLs in the
given directory based on a hash. Namely X509_LOOKUP_hash_dir() (see
x509_vfy.h). The typical usage is to add X509_LOOKUP_hash_dir() to the
X509_STORE store and then add directories to the lookup object. Usually
the store