{"id":16338795,"url":"https://github.com/neverpanic/copr-crypto-auditing-openssl","last_synced_at":"2025-11-03T07:30:25.012Z","repository":{"id":163117499,"uuid":"638464516","full_name":"neverpanic/copr-crypto-auditing-openssl","owner":"neverpanic","description":"OpenSSL package definition with crypto-auditing support for https://copr.fedorainfracloud.org/coprs/ueno/crypto-auditing/","archived":false,"fork":false,"pushed_at":"2023-05-09T16:51:28.000Z","size":2504,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"rawhide","last_synced_at":"2025-02-14T18:57:42.428Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/neverpanic.png","metadata":{"files":{"readme":"README.FIPS","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-05-09T12:32:24.000Z","updated_at":"2023-05-09T12:33:12.000Z","dependencies_parsed_at":null,"dependency_job_id":"ed01be99-436e-4954-a8c0-64e03a7fcb8f","html_url":"https://github.com/neverpanic/copr-crypto-auditing-openssl","commit_stats":null,"previous_names":[],"tags_count":185,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/neverpanic%2Fcopr-crypto-auditing-openssl","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/neverpanic%2Fcopr-crypto-auditing-openssl/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/neverpanic%2Fcopr-crypto-auditing-openssl/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/neverpanic%2Fcopr-crypto-auditing-openssl/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/neverpanic","download_url":"https://codeload.github.com/neverpanic/copr-crypto-auditing-openssl/tar.gz/refs/heads/rawhide","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239412505,"owners_count":19634016,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-10-10T23:51:40.462Z","updated_at":"2025-11-03T07:30:24.925Z","avatar_url":"https://github.com/neverpanic.png","language":"C","funding_links":[],"categories":[],"sub_categories":[],"readme":"User guide for the FIPS Red Hat Enterprise Linux - OpenSSL Module\n=================================================================\n\nThis package contains libraries which comprise the FIPS 140-2\nRed Hat Enterprise Linux - OPENSSL Module.\n\nThe module files\n================\n/usr/lib[64]/libcrypto.so.1.1.0\n/usr/lib[64]/libssl.so.1.1.0\n/usr/lib[64]/.libcrypto.so.1.1.0.hmac\n/usr/lib[64]/.libssl.so.1.1.0.hmac\n\nDependencies\n============\n\nThe approved mode of operation requires kernel with /dev/urandom RNG running\nwith properties as defined in the security policy of the module. This is\nprovided by kernel packages with validated Red Hat Enterprise Linux Kernel\nCrytographic Module.\n\nInstallation\n============\n\nThe RPM package of the module can be installed by standard tools recommended\nfor installation of RPM packages on the Red Hat Enterprise Linux system (yum,\nrpm, RHN remote management tool).\n\nThe RPM package dracut-fips must be installed for the approved mode of\noperation.\n\nUsage and API\n=============\n\nThe module respects kernel command line FIPS setting. If the kernel command\nline contains option fips=1 the module will initialize in the FIPS approved\nmode of operation automatically. To allow for the automatic initialization the\napplication using the module has to call one of the following API calls:\n\n- void OPENSSL_init_library(void) - this will do only a basic initialization\nof the library and does initialization of the FIPS approved mode without setting\nup EVP API with supported algorithms.\n\n- void OPENSSL_add_all_algorithms(void) - this API function calls\nOPENSSL_init() implicitly and also adds all approved algorithms to the EVP API\nin the approved mode \n\n- void SSL_library_init(void) - it calls OPENSSL_init() implicitly and also\nadds algorithms which are necessary for TLS protocol support and initializes\nthe SSL library.\n\nTo explicitely put the library to the approved mode the application can call\nthe following function:\n\n- int FIPS_mode_set(int on) - if called with 1 as a parameter it will switch\nthe library from the non-approved to the approved mode. If any of the selftests\nand integrity verification tests fail, the library is put into the error state\nand 0 is returned. If they succeed the return value is 1.\n\nTo query the module whether it is in the approved mode or not:\n\n- int FIPS_mode(void) - returns 1 if the module is in the approved mode,\n0 otherwise.\n\nTo query whether the module is in the error state:\n\n- int FIPS_selftest_failed(void) - returns 1 if the module is in the error\nstate, 0 otherwise.\n\nTo zeroize the FIPS RNG key and internal state the application calls:\n\n- void RAND_cleanup(void)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fneverpanic%2Fcopr-crypto-auditing-openssl","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fneverpanic%2Fcopr-crypto-auditing-openssl","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fneverpanic%2Fcopr-crypto-auditing-openssl/lists"}