Hi,
I require FIPS functionality in OpenSSL but I do NOT have a requirement
to run in FIPS mode.
What I would like is to build OpenSSL and have ALL functions available
to me so I can choose which ones I want to use. At the moment there are
some functions that are only available if the -fips
It's probably a combination of my misunderstanding and not wording
things correctly :-/
Let's say I want to use the function RSA_X931_generate_key(). Currently
it is surround by an #ifdef OPENSSL_FIPS conditional. Therefore with
the current build system I MUST specify the -fips option to obt
You are contradicting yourself. If you link against the
openssl-fips-1.1.1library, and are in FIPS_mode, then you have FIPS
functionality. If you are
not in FIPS mode, then the fips library trivially behaves as the traditional
openssl (with all functionalities). The former is called FIPS-validated
