-
-
Notifications
You must be signed in to change notification settings - Fork 9.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FIPS 140-3 fix ups #19631
FIPS 140-3 fix ups #19631
Conversation
This reverts commit 5db2b4a.
Any possibility that the buildbot for mac can be removed? |
Has it been checked with the lab that this is allowed for FIPS 140-3? |
SP 800-131Ar2 is pretty clear that decryption is permitted for legacy applications:
I did send a note to the lab but haven't heard back yet. |
24 hours has passed since 'approval: done' was set, but this PR has failing CI tests. Once the tests pass it will get moved to 'approval: ready to merge' automatically, alternatively please review and set the label manually. |
Merged to master and 3.1 branches. Thank you. |
This reverts commit fc0bb34 and changes how 3DES is advertised. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
This reverts commit c511953. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
This reverts commit 464c101. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
This reverts commit 5db2b4a. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
The OTC wants smarter tests that allow forward and backward transport of any FIPS provider.