Hi Martin,
This email addresses the second half, below.
regards,
Joy
On Wed, Apr 6, 2016 at 4:33 AM, Martin Pitt wrote:
> The patch changes behaviour even in !fips mode, e. g. in apps/speed.c:
>
> for (i = 0; i < DSA_NUM; i++)
> -dsa_doit[i] = 1;
> +if (!FIPS_
Hi Martin,
My apology for the delay. I had a morning full of meetings and I needed to
look at the code to answer.
I have addressed the first half of your email and will continue with the
second half next. Will send another email
regards,
Joy
On Wed, Apr 6, 2016 at 4:33 AM, Martin Pitt
wrote:
>
New debdiff.
Added a few more sentences to describe the patch to the patch header.
Also corrected a compiler warning.
** Attachment added: "Patch to include fips selftest and fips support to
openssl"
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1553309/+attachment/4625642/+files/de
Short summary of above comments:
- FIPs 140-2 is a U.S. government security standard for crypto. it
involves receiving accreditation for the crypto.
- This patch contains,
- selftest required by FIPs
- defines OPENSSL_FIPS
- a few crypto additions/changes that are constrained by OPENS
** Changed in: openssl (Ubuntu)
Status: Incomplete => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1553309
Title:
[FFe]: Include FIPS 140-2 into openssl package
To manage notific
Overview
-
FIPS 140-2 is a U.S. Government computer security standard to accredit
cryptographic modules. The certification process validates and certifies the
crypto within the module or used by the module.
Canonical is pursuing FIPS 140-2 certification for several modules in
1
attaching debdiff
** Patch added: "Patch to include fips selftest and fips support to openssl"
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1553309/+attachment/4602623/+files/openssl_1.0.2g-1ubuntu3~ppa2.debdiff
--
You received this bug notification because you are a member of Ubu
The patchset defines OPENSSL_FIPS in the openssl code. Thus code within "#ifdef
OPENSSL_FIPS" gets built for the libcrypto and libssl libraries. However, the
libraries don't run in fips mode. The version we certify will.
This preliminary step to include the patchset now into 16.04 allows us to
** Summary changed:
- Include FIPS 140-2 selftest into openssl package
+ [FFe]: Include FIPS 140-2 selftest into openssl package
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1553309
Title:
[FFe]
Public bug reported:
This is a request for a Feature Freeze Exception to include FIPS 140-2 selftest
into the openssl package in preparation for the FIPS 140-2 compliance for
16.0.4.
This patchset will :
- add ability to config, compile, run with fips option enabled
- add the selftest files t
201 - 210 of 210 matches
Mail list logo