Section 4.2.1 of the FIPS User Guide states...
Per the conditions of the FIPS 1402 validation only two configuration
commands may
be used:
./config fipscanisterbuild
or
./config fipscanisterbuild noasm
However, section 4.2.2 states...
Note that fipscanister.o can either be statically linked into an
application binary executable,
or statically linked into a shared library.
This leads to the question of how we would build a statically linked
OpenSSL library, such as using the following configuration...
./config fipscanisterbuild -static
My question is using the -static option to build the library a valid
option for FIPS mode? If not, why does section 4.2.2 state the canister
can be statically linked?
Thank you.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
