Menu
▾
▴
[Opensc-devel] mutual authentication fails when FIPS enabled
|
From: George <whi...@gm...> - 2021-01-27 04:25:33
|
Hi, When I attempt to do mutual authentication with a smart card, it fails. The problem appears to be related to enabling FIPS. I am using OpenSSL 1.0.2u(with FIPS) and LIBP11 0.4.11. The found the following Red Hat bug report, which describes the exact same problem I am seeing: https://bugzilla.redhat.com/show_bug.cgi?id=1827535 Is this a known LIBP11 bug? Will it be fixed in future versions of LIBP11? A suggested workaround in the above link is to make a change in the file libp11-libp11-0.4.11\src\p11_rsa.c: Change the line RSA_meth_set_flags(ops, 0); to RSA_meth_set_flags(ops, RSA_FLAG_FIPS_METHOD); Once I did this, it fixed my problem. Is this a proper fix? Thanks, George |
