OpenSSL FIPS 140-2 - Part Three - Windows OS

Compiling OpenSSL with the special FIPS module on Windows is a little more complicated than on Unix. As before, we are not allowed to make source code or build process changes to the FIPS module. (See part one of this series for more information on the build restrictions.)

OpenSSL FIPS 140-2 - Part Two - Unix OS

Compiling OpenSSL with the FIPS module on Unix-ish operating systems like Linux and Cygwin is pretty straightforward.

I was not able to correctly build the FIPS module on 64-bit Cygwin. There’s a bug in the ./config script that prevents it from compiling. I could get around the issue by running ./Configure linux-generic64 instead of the standard ./config script, but that would violate the mandated build procedure. The 32-bit version of Cygwin compiles everything without issue.

If you’d like to use the Cygwin compiled openssl.exe binary on a Windows system without Cygwin installed, copy the cygwin1.dll and cyggcc_s-1.dll files from the Cygwin bin directory and put it in the same directory as the openssl.exe file. Of course, it makes more sense to simply use the native Windows OS build.