x SuSE Linux 13.1-RELEASE x
x SuSE Linux 13.1-RELEASEx
FIPS_CONFIG(5ossl) OpenSSL FIPS_CONFIG(5ossl)
NAME
fips_config - OpenSSL FIPS configuration
DESCRIPTION
This command is disabled in SUSE/openSUSE. The FIPS provider is
automatically loaded when the system is booted in FIPS mode, or when
the environment variable OPENSSL_FORCE_FIPS_MODE is set. See the
documentation for more information.
HISTORY
This functionality was added in OpenSSL 3.0.
SUSE Linux Enterprise uses a supplementary downstream config for FIPS
module located in OpenSSL configuration directory and managed by
crypto-policies. If present, it should have the following format:
[fips_sect]
tls1-prf-ems-check = 0
activate = 1
The tls1-prf-ems-check option specifies whether FIPS module will
require the presence of extended master secret or not.
The activate option enforces FIPS provider activation.
COPYRIGHT
Copyright 2019-2022 The OpenSSL Project Authors. All Rights Reserved.
Licensed under the Apache License 2.0 (the "License"). You may not use
this file except in compliance with the License. You can obtain a copy
in the file LICENSE in the source distribution or at
<https://www.openssl.org/source/license.html>.
3.1.4 2025-09-25 FIPS_CONFIG(5ossl)
Want to link to this manual page? Use this URL:
<https://star2.abcm.com/cgi-bin/bsdi-man?query=fips_config&sektion=5&manpath=>