FIPS 140-3 fix ups #19631
Closed
FIPS 140-3 fix ups #19631
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
paulidale
added
branch: master
This reverts commit 5db2b4a.
2 tasks
|
Any possibility that the buildbot for mac can be removed? |
|
Has it been checked with the lab that this is allowed for FIPS 140-3? |
|
SP 800-131Ar2 is pretty clear that decryption is permitted for legacy applications:
I did send a note to the lab but haven't heard back yet. |
slontis
approved these changes
Nov 9, 2022
paulidale
added
the
approval: review pending
t8m
approved these changes
Nov 9, 2022
t8m
added
approval: done
|
24 hours has passed since 'approval: done' was set, but this PR has failing CI tests. Once the tests pass it will get moved to 'approval: ready to merge' automatically, alternatively please review and set the label manually. |
|
Merged to master and 3.1 branches. Thank you. |
beldmit
pushed a commit
to beldmit/openssl
that referenced
this pull request
Dec 26, 2022
This reverts commit fc0bb34 and changes how 3DES is advertised. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
beldmit
pushed a commit
to beldmit/openssl
that referenced
this pull request
Dec 26, 2022
This reverts commit c511953. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
beldmit
pushed a commit
to beldmit/openssl
that referenced
this pull request
Dec 26, 2022
This reverts commit 464c101. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
beldmit
pushed a commit
to beldmit/openssl
that referenced
this pull request
Dec 26, 2022
This reverts commit 5db2b4a. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from openssl#19631)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The OTC wants smarter tests that allow forward and backward transport of any FIPS provider.