Due to fips requirement our https server must only do
"RSA-Key-Transport"(no DSA,etc), is there a way to limit/enforce that on
FIPS-compatible-Openssl? yes the https server uses openssl as its ssl
library.
I'm checking openssl-1.0.2d/ssl/t1_trce.c and trying to find out if I
should hack the code or do it via compiler-options, so far I failed to
find the right places.
Or will the fips-openssl-module will enforce RSA-Key-Transport?
Thanks,
xxiao
_______________________________________________
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
