Re: AES-cipher offload to engine in openssl-fips

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

  • Which means in fips mode ciphers never gets offloaded to engine?
  • All other functions (digest, RSA etc) , it first updates to fips function, and then engine function. Why only ciphers has this different behaviour?

 

That seems like a bug.  In FIPS mode you can only use the FIPS-validated code, which means that you *have* to use the OpenSSL implementation.

 

If you do not use the OpenSSL implementation, then you cannot claim to be FIPS validated, and you must get your validation for your implementation.

 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux