Hello Team,
The following procedure is used to Integrate compiled openssl-fips2.0 in
openssl-1.0.1e :
a. Extract the contents of openssl-1.0.1e.tar.gz to
C:\openssl-1.0.1e-fips-compliant\
b. Open Visual Studio 2008 Command Prompt.
c. cd C:\openssl-1.0.1e-fips-compliant\
d. Copy all the contents of "C:\Program Files\NASM" in this source
folder
e. perl Configure VC-WIN32 fips
--with-fipslibdir=C:\usr\local\ssl\fips-2.0
perl Configure debug-VC-WIN32 fips
--with-fipslibdir=C:\usr\local\ssl\fips-2.0
f. ms\do_nasm
g. nmake -f ms\nt.mak
h. For Testing, use the following command: nmake -f ms\nt.mak test
i. nmake -f ms\nt.mak install
j. (If you want to create DLL files then Use the following commands
nmake -f ms\ntdll.mak && nmake -f ms\ntdll.mak install)
To avoid patent issues:
I have used the below compiler switches mentioned to Disable known patented or
outdated algorithms .
> 1) perl Configure VC-WIN32 fips
> --with-fipslibdir=C:\usr\local\ssl\fips-2.0 no-ec2m no-idea no-mdc2
> no-rc5
Hope , this will take care of disabling the algorithms.
But please let me know how to cross verify the algorithms are disabled.
Any script files are generated mentioned that patents are disabled.. Please
help.
Regards
Ashwini V Patil
With best regards,
Ashwini V Patil
Siemens Healthcare Private Limited
HC SI DC IN H1-FH STD IBP 6
84, Hosur Road
Bengaluru 560100, Indien
Mobil: +91 9008132565
mailto:[email protected]
Registered Office: 130, Pandurang Budhkar Marg, Worli, Mumbai 400 018.
Telephone +91 22 39677000. Fax +91 22 39677075. Other Offices: Bengaluru.
Corporate Identity number: U74999MH2015PTC264859
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
