On OpenBSD openssl/fips.h is not available and FIPS_mode() is not
available, so implement a stub for fips_mode_enabled().
Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
#include <openssl/err.h>
+#if defined(HAVE_OPENSSL_FIPS_H) || defined(HAVE_OPENSSL_FIPS_MODE_SET_API)
+/*
+ * fips_mode_enabled: Determine whether FIPS mode is enabled
+ */
bool fips_mode_enabled(void)
{
#if OPENSSL_VERSION_NUMBER >= 0x30000000L
*
* Returns < 0 on error, 0 otherwise.
*/
-#if defined(HAVE_OPENSSL_FIPS_H) || defined(HAVE_OPENSSL_FIPS_MODE_SET_API)
int fips_mode_disable(void)
{
int ret = 0;
}
#else
/* OpenBSD & DragonFlyBSD case */
+bool fips_mode_enabled(void)
+{
+ return false;
+}
+
int fips_mode_disable(void)
{
return 0;