MozillaWiki

FIPS Module Specification: Difference between revisions

Page Discussion

FIPS Module Specification (view source)

Revision as of 20:07, 21 May 2006

239 bytes added ,  21 May 2006
→‎Approved Mode of Operation
Line 84: Line 84:


===Approved Mode of Operation===
===Approved Mode of Operation===
In order to run the NSS module in the FIPS approved mode, an attribute must be explicitly set on the module. This can be done programmatically with a call to SECMOD_DeleteInternalModule() (with the module to delete being the internal module) or by running the NSS module utility '''modutil'''. An example command line is below.
In order to run the NSS module in the FIPS approved mode, an attribute must be explicitly set on the module. This can be done programmatically with a call to SECMOD_DeleteInternalModule() (with the module to delete being the internal module):
<pre>
SECMODModule *internal;
SECStatus rv;
 
internal = SECMOD_GetInternalModule();
if (!internal) {
    /* handle error */
}
rv = SECMOD_DeleteInternalModule(internal->commonName);
if (rv != SECSuccess) {
    /* handle error */
}
</pre>
or by running the NSS module utility '''modutil'''. An example command line is below.


'''modutil -fips true -dbdir certdir'''
'''modutil -fips true -dbdir certdir'''
Wtchang
canmove, Confirmed users
937

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/26381"