Short summary of above comments:
- FIPs 140-2 is a U.S. government security standard for crypto. it
involves receiving accreditation for the crypto.
- This patch contains,
- selftest required by FIPs
- defines OPENSSL_FIPS
- a few crypto additions/changes that are constrained by OPENSSL_FIPS
define and having to be in fips mode to execute.
This patch does,
- provide the additional code required for FIPs certification
- upon openssl initialization and setup, the selftests will be executed. If
a selftest fails, because openssl is not in fips mode,
normal operation should not be interrupted.
- This patch does not
- it does not enable fips mode, thus openssl will run as it normally does
The FIPs patch will not be included into the upstream source. This is a feature
to be maintained by Canonical.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1553309
Title:
[FFe]: Include FIPS 140-2 into openssl package
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1553309/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
