On 2014/04/17 10:17, Ted Unangst wrote: > CVSROOT: /cvs > Module name: src > Changes by: [email protected] 2014/04/17 10:17:41 > > Modified files: > lib/libssl/src/crypto: crypto.h > lib/libcrypto/crypto: Makefile > Removed files: > lib/libssl/src/crypto: o_fips.c > > Log message: > Fully kill FIPS API. Forcible certification conflicts with the goals of a > free software project. ok beck deraadt > > Ports calling FIPS_mode_set(1): mongodb >
also ruby (protected by HAVE_OPENSSL_FIPS), poco (HAVE_OPENSSL_FIPS), socat (with autoconf check), unbound (autoconf; can someone take a look at unbound/util/random.c for a sanity check please?), p5-Net-SSLeay (protected by OPENSSL_FIPS), apache-httpd (HAVE_OPENSSL_FIPS), stunnel (autoconf), wpa_supplicant (OPENSSL_FIPS), monit (OPENSSL_FIPS) - maybe others, it takes a while to search 100GB of source. I haven't found a check in mongodb for this yet, but everything else so far does have a check.
