Update OpenSSL to 1.0.1g and statically link OpenVPN with it

author: Arne Schwabe <arne@rfc2549.org> 2014-04-23 09:56:37 +0200
committer: Arne Schwabe <arne@rfc2549.org> 2014-04-23 09:56:37 +0200
commit: e436c963f0976b885a7db04681344779e26dd3b5 (patch)
tree: 240663106f32e02e1c34080656f4ef21a2e1776e /main/openssl/crypto/ecdh/ech_locl.h
parent: 6a99715a9b072fa249e79c98cd9f03991f0f1219 (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/main/openssl/crypto/ecdh/ech_locl.h b/main/openssl/crypto/ecdh/ech_locl.h
index f658526a..f6cad6a8 100644
--- a/main/openssl/crypto/ecdh/ech_locl.h
+++ b/main/openssl/crypto/ecdh/ech_locl.h
@@ -75,6 +75,14 @@ struct ecdh_method
 	char *app_data;
 	};
 
+/* If this flag is set the ECDH method is FIPS compliant and can be used
+ * in FIPS mode. This is set in the validated module method. If an
+ * application sets this flag in its own methods it is its responsibility
+ * to ensure the result is compliant.
+ */
+
+#define ECDH_FLAG_FIPS_METHOD	0x1
+
 typedef struct ecdh_data_st {
 	/* EC_KEY_METH_DATA part */
 	int (*init)(EC_KEY *);
author	Arne Schwabe <arne@rfc2549.org>	2014-04-23 09:56:37 +0200
committer	Arne Schwabe <arne@rfc2549.org>	2014-04-23 09:56:37 +0200
commit	e436c963f0976b885a7db04681344779e26dd3b5 (patch)
tree	240663106f32e02e1c34080656f4ef21a2e1776e /main/openssl/crypto/ecdh/ech_locl.h
parent	6a99715a9b072fa249e79c98cd9f03991f0f1219 (diff)