Hi, Calling PKCS12_parse while in FIPS mode fails when the p12 file is password protected using RC2 since that is not an approved algorithm. I see that the EVP_CIPH_FLAG_NON_FIPS_ALLOW flag makes it possible to allow non-fips algorithms for a specific task, but I can't use that since I'm not creating the cipher context directly. Is there a way to accomplish this other than turning FIPS mode off and on again?
It would be nice to add that flag in PKCS12_pbe_crypt() when the cipher context is created, but I realize that may not be an ideal solution. Thanks for any pointers! Zeke ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
