Hi, I tried to build libssh2 on FIPS 140-2 compliant RedHat Linux. The build succeeded but the actual connections failed during key exchange phase. I noticed that it was related to use of non-FIPS compliant algorithms (namely MD5) which are not available in libcrypto when in FIPS mode. I fixed it by patching "src/openssl.h". If there is a better way, let me know. Anyhow, my patch is attached, have fun.
JanO
libssh2-openssl-fips.patch
Description: Binary data
_______________________________________________ libssh2-devel http://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel
