www.libssh2.org | Daily snapshots | Mailing list archive | Docs | Examples | github

Archive Index This month's Index

Subject: building libssh2 on FIPS enabled system

building libssh2 on FIPS enabled system

From: Ján Osuský <Jan.Osusky_at_iblsoft.com>
Date: Mon, 12 Aug 2013 15:00:04 +0200

Hi,

I tried to build libssh2 on FIPS 140-2 compliant RedHat Linux. The build succeeded but the actual connections failed during key exchange phase. I noticed that it was related to use of non-FIPS compliant algorithms (namely MD5) which are not available in libcrypto when in FIPS mode.
I fixed it by patching "src/openssl.h". If there is a better way, let me know.
Anyhow, my patch is attached, have fun.

JanO

_______________________________________________
libssh2-devel http://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel

Received on 2013-08-12

the libssh2 team