> On Dec 28, 2016, at 4:59 PM, Mark Hatle <mark.ha...@windriver.com> wrote: > > > AFAIK, only openssl 1.0.x supports the FIPS module. There are a few folks > looking at private implementations of the older module with OpenSSL 1.1.x, but > definitely not official. >
Yes, only 1.0.x atm. The development timeline from openssl-fops 3.0 is here: https://www.safelogic.com/category/fips-140/ The path forward with openssl in RPM is murky: LibreSSL? BoringSSL? NanoSSL? -ENOCLUE 73 de Jeff