> Does this mean that if I want to use low level digest APIs that I would
> comment out the ' if (FIPS_mode())' test below?
> If this is ocorrect, am I now violating FIPS?
Yes, if you make that change and try to use that API, you would be violating
the FIPS validation.
The error message seems pretty clear:
sha_locl.h(128): OpenSSL internal error, assertion failed: Low level
API call to digest SHA1 forbidden in FIPS mode!
Are you asking which API to use instead?
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majord...@openssl.org
