1openssl_conf = openssl_init 2 3# Comment out the next line to ignore configuration errors 4config_diagnostics = 1 5 6.include fipsmodule.cnf 7 8[openssl_init] 9providers = provider_sect 10alg_section = evp_properties 11 12[evp_properties] 13# Ensure FIPS non-approved algorithms in the FIPS module are suppressed (e.g. 14# TEST-RAND). This also means that EVP_default_properties_is_fips_enabled() 15# returns the expected value 16default_properties = "fips=yes" 17 18[provider_sect] 19fips = fips_sect 20
