Is there a reason why RSA_sign() blocks anything that isn't a TLS
signature in FIPS mode?
OpenSSH ssh_rsa_sign() function calls RSA_sign() with nid=NID_sha1 for
key signing, but given the code in OpenSSL RSA_sign() it fails with
"operation not allowed in fips mode" error.
Is this something that could be fixed in OpenSSH by calling different APIs?
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [email protected]
