stunnel Universal SSL tunnel
FIPS support status:
- Unix platforms are currently supported.
- Win32 platform is currently unsupported due to some problems with
building and linking FIPS-enabled OpenSSL DLLs.
FIPS mode is autodetected if possible. You can force it with:
./configure --enable-fips
or disable with:
./configure --disable-fips
Preliminary WIN32 HOWTO (does NOT work, now):
- Download and install ActivePerl:
- Download and install MinGW-5.1.3.exe:
Also select "g++ compiler" for installation
- Download and install MSYS-1.0.10.exe:
- Download OpenSSL FIPS:
- Execute MSYS and unpack OpenSSL:
tar -xzf /c/downloads/openssl-fips-1.1.2.tar.gz
- Build the OpenSSL:
cd openssl-fips-1.1.2
./config fips
make install
cd /usr/local/ssl/lib
ar xv `gcc -print-libgcc-file-name` _chkstk.o _udivdi3.o _umoddi3.o
mkdir /c/fipscanister/
cp _* fips* /c/fipscanister/
- Download and unpack OpenSSL 0.9.7m:
- Download and install Visual C++ 2008 Express Edition:
- Execute "Open Visual Studio 2008 Command Prompt" and build OpenSSL:
perl Configure VC-WIN32 fips --with-fipslibdir=c:\fipscanister
nmake -f ms\ntdll.mak