* >FIPS ciphers are a subset of the ciphers that OpenSSL supports.
* Is this true of both OpenSSL 2.0 FIPS version and OpenSSL 3.0 FIPS
version. (I suppose yes). But still your confirmation will be helpful.
Yes it is true for both.
* Also, current version is considered outdated,
Thanks for your answer, it clears up a path for me.Basically, when I build my code against OpenSSL library running with version 2.0 FIPS enabled, my code would work fine on systems running with same OpenSSL library version but non-fips mode.
$> openssl version
OpenSSL 1.0.2k-fips 26 Jan 2017
Are you asking about the current (outdated) 2.0 module or the 3.0 module that
is still being developed?
In 2.0, once you enter FIPS mode you cannot leave it. In 3.0 you can switch
among FIPS and non-FIPS as you need to. See
https://www.openssl.org/docs/OpenSSL300Design.html for a description
On Thu, 28 May 2020 13:20:02 +0200,
Johnny Black wrote:
> Hi,
>
> I'm having problems installing openssl.
> I downloaded 1.1.1 version from the website and
> I followed all the instructions but
> when I run the "nmake" command I get an error.
> It says, I quote:
> "ias -d debug -o
Hi,
I'm having problems installing openssl.
I downloaded 1.1.1 version from the website and
I followed all the instructions but
when I run the "nmake" command I get an error.
It says, I quote:
"ias -d debug -o crypto\aes\aes-ia64.obj "crypto\aes\aes-ia64.asm"
"NMAKE : fatal error U1077: 'ias' :
Reposting the email, as it was not delivered unless we are subscribed to the list.
Thanks,
Prashant
- Original message -From: Prashant Sharma31/India/IBMTo: openssl-users@openssl.org, Mei-Mei Fu/Santa Teresa/IBM@IBMUSCc:Subject: OpenSSL in FIPS mode, does FIPS mode provide any extra