2
0

fips.cnf 391 B

12345678910111213141516
  1. openssl_conf = openssl_init
  2. .include fipsmodule.cnf
  3. [openssl_init]
  4. providers = provider_sect
  5. alg_section = evp_properties
  6. [evp_properties]
  7. # Ensure FIPS non-approved algorithms in the FIPS module are suppressed (e.g.
  8. # TEST-RAND). This also means that EVP_default_properties_is_fips_enabled()
  9. # returns the expected value
  10. default_properties = "fips=yes"
  11. [provider_sect]
  12. fips = fips_sect