2019-08-24 16:56:34 +08:00
|
|
|
=pod
|
2020-02-27 05:45:31 +08:00
|
|
|
{- OpenSSL::safe::output_do_not_edit_headers(); -}
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
|
|
|
openssl-fipsinstall - perform FIPS configuration installation
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
B<openssl fipsinstall>
|
|
|
|
[B<-help>]
|
2019-09-26 03:20:11 +08:00
|
|
|
[B<-in> I<configfilename>]
|
|
|
|
[B<-out> I<configfilename>]
|
|
|
|
[B<-module> I<modulefilename>]
|
|
|
|
[B<-provider_name> I<providername>]
|
|
|
|
[B<-section_name> I<sectionname>]
|
2019-08-24 16:56:34 +08:00
|
|
|
[B<-verify>]
|
2019-09-26 03:20:11 +08:00
|
|
|
[B<-mac_name> I<macname>]
|
|
|
|
[B<-macopt> I<nm>:I<v>]
|
2020-01-15 08:48:01 +08:00
|
|
|
[B<-noout>]
|
2020-02-26 05:27:24 +08:00
|
|
|
[B<-quiet>]
|
2020-09-10 12:01:30 +08:00
|
|
|
[B<-no_conditional_errors>]
|
2020-09-05 11:08:27 +08:00
|
|
|
[B<-no_security_checks>]
|
2021-05-05 08:36:41 +08:00
|
|
|
[B<-self_test_onload>]
|
2020-01-15 08:48:01 +08:00
|
|
|
[B<-corrupt_desc> I<selftest_description>]
|
|
|
|
[B<-corrupt_type> I<selftest_type>]
|
2020-07-21 14:30:02 +08:00
|
|
|
[B<-config> I<parent_config>]
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
Command docs: fix up command references
Almost all OpenSSL commands are in reality 'openssl cmd', so make sure
they are refered to like that and not just as the sub-command.
Self-references are avoided as much as is possible, and replaced with
"this command". In some cases, we even avoid that with a slight
rewrite of the sentence or paragrah they were in. However, in the few
cases where a self-reference is still admissible, they are done in
bold, i.e. openssl-speed.pod references itself like this:
B<openssl speed>
References to other commands are done as manual links, i.e. CA.pl.pod
references 'openssl req' like this: L<openssl-req(1)>
Some commands are examples rather than references; we enclose those in
C<>.
While we are it, we abolish "utility", replacing it with "command", or
remove it entirely in some cases.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10065)
2019-10-02 01:43:36 +08:00
|
|
|
This command is used to generate a FIPS module configuration file.
|
2020-03-20 23:10:15 +08:00
|
|
|
This configuration file can be used each time a FIPS module is loaded
|
|
|
|
in order to pass data to the FIPS module self tests. The FIPS module always
|
2021-05-05 08:36:41 +08:00
|
|
|
verifies its MAC, but optionally only needs to run the KAT's once,
|
2020-03-20 23:10:15 +08:00
|
|
|
at installation.
|
|
|
|
|
2019-08-24 16:56:34 +08:00
|
|
|
The generated configuration file consists of:
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
=item - A MAC of the FIPS module file.
|
|
|
|
|
|
|
|
=item - A test status indicator.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
This indicates if the Known Answer Self Tests (KAT's) have successfully run.
|
|
|
|
|
|
|
|
=item - A MAC of the status indicator.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-09-10 12:01:30 +08:00
|
|
|
=item - A control for conditional self tests errors.
|
|
|
|
|
|
|
|
By default if a continuous test (e.g a key pair test) fails then the FIPS module
|
|
|
|
will enter an error state, and no services or cryptographic algorithms will be
|
|
|
|
able to be accessed after this point.
|
|
|
|
The default value of '1' will cause the fips module error state to be entered.
|
|
|
|
If the value is '0' then the module error state will not be entered.
|
|
|
|
Regardless of whether the error state is entered or not, the current operation
|
|
|
|
(e.g. key generation) will return an error. The user is responsible for retrying
|
|
|
|
the operation if the module error state is not entered.
|
|
|
|
|
2020-09-05 11:08:27 +08:00
|
|
|
=item - A control to indicate whether run-time security checks are done.
|
|
|
|
|
|
|
|
This indicates if run-time checks related to enforcement of security parameters
|
|
|
|
such as minimum security strength of keys and approved curve names are used.
|
|
|
|
The default value of '1' will perform the checks.
|
|
|
|
If the value is '0' the checks are not performed and FIPS compliance must
|
|
|
|
be done by procedures documented in the relevant Security Policy.
|
|
|
|
|
2019-08-24 16:56:34 +08:00
|
|
|
=back
|
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
This file is described in L<fips_config(5)>.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
=head1 OPTIONS
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
|
|
|
=item B<-help>
|
|
|
|
|
|
|
|
Print a usage message.
|
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-module> I<filename>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
Filename of the FIPS module to perform an integrity check on.
|
2020-09-11 01:50:09 +08:00
|
|
|
The path provided in the filename is used to load the module when it is
|
|
|
|
activated, and this overrides the environment variable B<OPENSSL_MODULES>.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-out> I<configfilename>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
Filename to output the configuration data to; the default is standard output.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-in> I<configfilename>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2021-03-20 00:05:59 +08:00
|
|
|
Input filename to load configuration data from.
|
|
|
|
Must be used if the B<-verify> option is specified.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
=item B<-verify>
|
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
Verify that the input configuration file contains the correct information.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-provider_name> I<providername>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Name of the provider inside the configuration file.
|
2020-06-29 09:11:48 +08:00
|
|
|
The default value is C<fips>.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-section_name> I<sectionname>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Name of the section inside the configuration file.
|
2020-06-29 09:11:48 +08:00
|
|
|
The default value is C<fips_sect>.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-mac_name> I<name>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Specifies the name of a supported MAC algorithm which will be used.
|
2020-03-20 23:10:15 +08:00
|
|
|
The MAC mechanisms that are available will depend on the options
|
|
|
|
used when building OpenSSL.
|
Command docs: fix up command references
Almost all OpenSSL commands are in reality 'openssl cmd', so make sure
they are refered to like that and not just as the sub-command.
Self-references are avoided as much as is possible, and replaced with
"this command". In some cases, we even avoid that with a slight
rewrite of the sentence or paragrah they were in. However, in the few
cases where a self-reference is still admissible, they are done in
bold, i.e. openssl-speed.pod references itself like this:
B<openssl speed>
References to other commands are done as manual links, i.e. CA.pl.pod
references 'openssl req' like this: L<openssl-req(1)>
Some commands are examples rather than references; we enclose those in
C<>.
While we are it, we abolish "utility", replacing it with "command", or
remove it entirely in some cases.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10065)
2019-10-02 01:43:36 +08:00
|
|
|
To see the list of supported MAC's use the command
|
|
|
|
C<openssl list -mac-algorithms>. The default is B<HMAC>.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-09-26 03:20:11 +08:00
|
|
|
=item B<-macopt> I<nm>:I<v>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Passes options to the MAC algorithm.
|
|
|
|
A comprehensive list of controls can be found in the EVP_MAC implementation
|
|
|
|
documentation.
|
2020-06-29 10:20:41 +08:00
|
|
|
Common control strings used for this command are:
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
2019-10-02 00:16:29 +08:00
|
|
|
=item B<key>:I<string>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Specifies the MAC key as an alphanumeric string (use if the key contains
|
|
|
|
printable characters only).
|
|
|
|
The string length must conform to any restrictions of the MAC algorithm.
|
|
|
|
A key must be specified for every MAC algorithm.
|
2020-06-29 10:20:41 +08:00
|
|
|
If no key is provided, the default that was specified when OpenSSL was
|
|
|
|
configured is used.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-10-02 00:16:29 +08:00
|
|
|
=item B<hexkey>:I<string>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Specifies the MAC key in hexadecimal form (two hex digits per byte).
|
|
|
|
The key length must conform to any restrictions of the MAC algorithm.
|
|
|
|
A key must be specified for every MAC algorithm.
|
2020-06-29 10:20:41 +08:00
|
|
|
If no key is provided, the default that was specified when OpenSSL was
|
|
|
|
configured is used.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2019-10-02 00:16:29 +08:00
|
|
|
=item B<digest>:I<string>
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
Used by HMAC as an alphanumeric string (use if the key contains printable
|
|
|
|
characters only).
|
|
|
|
The string length must conform to any restrictions of the MAC algorithm.
|
Command docs: fix up command references
Almost all OpenSSL commands are in reality 'openssl cmd', so make sure
they are refered to like that and not just as the sub-command.
Self-references are avoided as much as is possible, and replaced with
"this command". In some cases, we even avoid that with a slight
rewrite of the sentence or paragrah they were in. However, in the few
cases where a self-reference is still admissible, they are done in
bold, i.e. openssl-speed.pod references itself like this:
B<openssl speed>
References to other commands are done as manual links, i.e. CA.pl.pod
references 'openssl req' like this: L<openssl-req(1)>
Some commands are examples rather than references; we enclose those in
C<>.
While we are it, we abolish "utility", replacing it with "command", or
remove it entirely in some cases.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10065)
2019-10-02 01:43:36 +08:00
|
|
|
To see the list of supported digests, use the command
|
|
|
|
C<openssl list -digest-commands>.
|
2020-06-29 10:20:41 +08:00
|
|
|
The default digest is SHA-256.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
|
|
|
=back
|
|
|
|
|
2020-01-15 08:48:01 +08:00
|
|
|
=item B<-noout>
|
|
|
|
|
|
|
|
Disable logging of the self tests.
|
|
|
|
|
2020-09-10 12:01:30 +08:00
|
|
|
=item B<-no_conditional_errors>
|
|
|
|
|
|
|
|
Configure the module to not enter an error state if a conditional self test
|
|
|
|
fails as described above.
|
|
|
|
|
2020-09-05 11:08:27 +08:00
|
|
|
=item B<-no_security_checks>
|
|
|
|
|
|
|
|
Configure the module to not perform run-time security checks as described above.
|
2020-09-10 12:01:30 +08:00
|
|
|
|
2021-05-05 08:36:41 +08:00
|
|
|
=item B<-self_test_onload>
|
|
|
|
|
|
|
|
Do not write the two fields related to the "test status indicator" and
|
|
|
|
"MAC status indicator" to the output configuration file. Without these fields
|
|
|
|
the self tests KATS will run each time the module is loaded. This option could be
|
|
|
|
used for cross compiling, since the self tests need to run at least once on each
|
|
|
|
target machine. Once the self tests have run on the target machine the user
|
|
|
|
could possibly then add the 2 fields into the configuration using some other
|
|
|
|
mechanism.
|
|
|
|
|
2020-02-26 05:27:24 +08:00
|
|
|
=item B<-quiet>
|
2020-01-15 08:48:01 +08:00
|
|
|
|
2020-02-26 05:27:24 +08:00
|
|
|
Do not output pass/fail messages. Implies B<-noout>.
|
|
|
|
|
|
|
|
=item B<-corrupt_desc> I<selftest_description>,
|
|
|
|
B<-corrupt_type> I<selftest_type>
|
2020-01-15 08:48:01 +08:00
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
The corrupt options can be used to test failure of one or more self tests by
|
2020-01-15 08:48:01 +08:00
|
|
|
name.
|
2020-03-20 23:10:15 +08:00
|
|
|
Either option or both may be used to select the tests to corrupt.
|
|
|
|
Refer to the entries for B<st-desc> and B<st-type> in L<OSSL_PROVIDER-FIPS(7)> for
|
2020-01-15 08:48:01 +08:00
|
|
|
values that can be used.
|
|
|
|
|
2020-07-21 14:30:02 +08:00
|
|
|
=item B<-config> I<parent_config>
|
|
|
|
|
|
|
|
Test that a FIPS provider can be loaded from the specified configuration file.
|
|
|
|
A previous call to this application needs to generate the extra configuration
|
|
|
|
data that is included by the base C<parent_config> configuration file.
|
|
|
|
See L<config(5)> for further information on how to set up a provider section.
|
|
|
|
All other options are ignored if '-config' is used.
|
|
|
|
|
2019-08-24 16:56:34 +08:00
|
|
|
=back
|
|
|
|
|
2021-08-31 08:59:20 +08:00
|
|
|
=head1 NOTES
|
|
|
|
|
|
|
|
Self tests results are logged by default if the options B<-quiet> and B<-noout>
|
|
|
|
are not specified, or if either of the options B<-corrupt_desc> or
|
|
|
|
B<-corrupt_type> are used.
|
|
|
|
If the base configuration file is set up to autoload the fips module, then the
|
|
|
|
fips module will be loaded and self tested BEFORE the fipsinstall application
|
|
|
|
has a chance to set up its own self test callback. As a result of this the self
|
|
|
|
test output and the options B<-corrupt_desc> and B<-corrupt_type> will be ignored.
|
|
|
|
For normal usage the base configuration file should use the default provider
|
|
|
|
when generating the fips configuration file.
|
|
|
|
|
2019-08-24 16:56:34 +08:00
|
|
|
=head1 EXAMPLES
|
|
|
|
|
2019-10-02 02:19:45 +08:00
|
|
|
Calculate the mac of a FIPS module F<fips.so> and run a FIPS self test
|
2020-02-26 02:25:13 +08:00
|
|
|
for the module, and save the F<fips.cnf> configuration file:
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-09-05 11:08:27 +08:00
|
|
|
openssl fipsinstall -module ./fips.so -out fips.cnf -provider_name fips
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-02-26 02:25:13 +08:00
|
|
|
Verify that the configuration file F<fips.cnf> contains the correct info:
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-09-05 11:08:27 +08:00
|
|
|
openssl fipsinstall -module ./fips.so -in fips.cnf -provider_name fips -verify
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-03-20 23:10:15 +08:00
|
|
|
Corrupt any self tests which have the description C<SHA1>:
|
2020-01-15 08:48:01 +08:00
|
|
|
|
2020-02-26 02:25:13 +08:00
|
|
|
openssl fipsinstall -module ./fips.so -out fips.cnf -provider_name fips \
|
2020-03-20 23:10:15 +08:00
|
|
|
-corrupt_desc 'SHA1'
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-07-21 14:30:02 +08:00
|
|
|
Validate that the fips module can be loaded from a base configuration file:
|
|
|
|
|
|
|
|
export OPENSSL_CONF_INCLUDE=<path of configuration files>
|
2020-08-17 13:40:00 +08:00
|
|
|
export OPENSSL_MODULES=<provider-path>
|
2020-07-21 14:30:02 +08:00
|
|
|
openssl fipsinstall -config' 'default.cnf'
|
|
|
|
|
|
|
|
|
2019-08-24 16:56:34 +08:00
|
|
|
=head1 SEE ALSO
|
|
|
|
|
2020-07-21 14:30:02 +08:00
|
|
|
L<config(5)>,
|
2019-08-24 16:56:34 +08:00
|
|
|
L<fips_config(5)>,
|
2020-01-15 08:48:01 +08:00
|
|
|
L<OSSL_PROVIDER-FIPS(7)>,
|
2019-08-24 16:56:34 +08:00
|
|
|
L<EVP_MAC(3)>
|
|
|
|
|
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
2021-04-08 20:04:41 +08:00
|
|
|
Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
|
2019-08-24 16:56:34 +08:00
|
|
|
|
2020-04-27 12:59:50 +08:00
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
2019-08-24 16:56:34 +08:00
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
=cut
|