Hello,
A system running in FIPS can have several applications using libssl.
openvpn and openswan are two. There can be 3rd party web servers. So
on. Is there any 'library magic' these days that would prevent
modifying each and every application to add a FIPS_mode_set() call and
error handling ?
In ancient times tar used a blocksize of 10240 bytes (or 20 records of 512
bytes), particularly for tape. I'm pretty sure I sometimes had to zero pad
out to a multiple of 10240 bytes, even when there was no tape involved.
On Wed, Jan 14, 2015 at 12:16 AM, Matt Caswell wrote:
>
>
> On 13/01/15 00
The OpenSSL coding style document is now available on our web site:
https://www.openssl.org/about/codingstyle.txt
It is derived from the Linux Kernel coding style, and we are grateful to them
for providing such an excellent document that we could use as our base. Because
it is derived f
I am looking for test vectors and a test suite to support FIPS KDF testing
using openSSL FIPS version 2.0.7 in conjunction with OpenSSL 1.0.1e.
Specifically, I am looking to do TLS KDF testing. I am new to openSSL/FIPS
community and was expecting to find KDF test vectors similar to what is
prov
On 13/01/15 09:10, Matt Caswell wrote:
>
>
> On 12/01/15 15:29, Thomas J. Hruska wrote:
>> None of the latest tarballs compile on Windows. Applying the 1.0.x
>> patch to fix the 'cflags' issue would violate the default build only
>> rule of the binary release process.
>>
>> Also, found an issu
On 13/01/15 00:51, jone...@teksavvy.com wrote:
> Hello,
>
> There is an untarring error with file. Here are the details.
>
> File size:
>
> 1425056 Jan 4 18:50 openssl-fips-2.0.9.tar.gz
>
> md5sum test OK with:
>
> c8256051d7a76471c6ad4fb771404e60
>
> The error:
>
> % tar xvfz openss
Thanks Matt.
On Tue, Jan 13, 2015 at 2:38 PM, Matt Caswell wrote:
>
>
> On 13/01/15 06:42, Gayathri Manoj wrote:
> > Hi,
> >
> > I am using openssl- 0.9.8l and able to compile the openssl in fips
> > mode. Now planning to upgrade to latest version - 1.0.1j.
> > openssl-fips version is 1_2
On 12/01/15 15:29, Thomas J. Hruska wrote:
> None of the latest tarballs compile on Windows. Applying the 1.0.x
> patch to fix the 'cflags' issue would violate the default build only
> rule of the binary release process.
>
> Also, found an issue with 0.9.8zd not found in 0.9.8zc:
There is an o
On 13/01/15 06:42, Gayathri Manoj wrote:
> Hi,
>
> I am using openssl- 0.9.8l and able to compile the openssl in fips
> mode. Now planning to upgrade to latest version - 1.0.1j.
> openssl-fips version is 1_2 and not changed this library.
You need to also upgrade your FIPS version to 2.0.