Topic: OpenSSL-fips for Apache 2.4.12, 2.4.16, 2.4.17

[Jan-E]

I have built a replacement for the OpenSSL Apache files with FIPS 140 enabled:

https://phpdev.toolsforresearch.com/openssl-1.0.2d-fips-2.4.17-x86-vc14.zip
https://phpdev.toolsforresearch.com/openssl-1.0.2d-fips-2.4.17-x64-vc14.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.17-x86-vc11.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.17-x64-vc11.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.17-x86-vc9.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.17-x64-vc9.zip

https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.16-x86-vc11.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.16-x64-vc11.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.16-x86-vc9.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.16-x64-vc9.zip

https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.12-x86-vc11.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.12-x64-vc11.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.12-x86-vc9.zip
https://phpdev.toolsforresearch.com/openssl-1.0.1p-fips-2.4.12-x64-vc9.zip

I have used fips-2.0.9 for building it:
http://www.openssl.org/source/openssl-fips-2.0.9.tar.gz

See the FIPS documentation:
http://www.openssl.org/docs/fips/UserGuide-2.0.pdf
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1747.pdf

I have two test sites with FIPS mode on:
https://www.ssllabs.com/ssltest/analyze.html?d=ie8xp.sessiondatabase.net

If you want to disable support for IE8 on XP (and Java 7):
https://www.ssllabs.com/ssltest/analyze.html?d=fips.sessiondatabase.net

Bonus for those people that are running an OpenSSH server:
https://phpdev.toolsforresearch.com/openssl-1.0.1i-fips-cygwin-x86.zip

BTW: all my PHP builds now have the openssl-fips as well. If you do not add 'SSLFIPS on' to your config, they should behave just like openssl without fips support. Let me know if and when you experience difficulties.

Edit: changed the links to OpenSSL 1.0.1j

Edit 2015-01-12: Updated to Fips 2.0.9 and OpenSSL 1.0.1k.

Edit 2015-01-22: Updated to OpenSSL 1.0.1l.

Edit 2015-02-02: Updated to Apache 2.4.12

Edit 2015-03-20: Updated to OpenSSL 1.0.1m.

Edit 2015-07-19: Updated to OpenSSL 1.0.1p.

Edit 2015-07-19: Added the versions for 2.4.16.

Edit 2015-10-19: Added the versions for 2.4.17 and for VC14

[glsmith]

May I ask what is the reason for running FIPS ... other than "because we can." Does it give any better encryption than OpenSSL without FIPS?

My understanding is that FIPS is a set security policy which may be required for any number of reasons. As far as the encryption end, it has a small set of elliptical curves it can use. However this policy also regulates how the OpenSSL FIPS source is obtained, built and installed onto any server. Just having FIPS does not automatically make you able to be FIPS verified.

https://www.openssl.org/docs/fips/UserGuide-2.0.pdf
https://www.openssl.org/docs/fips/SecurityPolicy-2.0.pdf

[Jan-E]

If you read the security policy, it is not hard to build a FIPS validated module for Windows. See the 2.0.8-version here:
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1747.pdf

In fact, the hardest part was unpacking openssl-fips-2.0.8.tar.gz. 7Zip does not do the job because that file contains symlinks. I used 'tar xvf fips-2.0.8.tar.gz', using Cygwin's tar.exe for that. After that, running (W2) ms\do_fips.bat or (W1) ms\do_fips.bat no-asm in a VCx prompt will give you the desired fipscanister.lib

Linking that module into OpenSSL is done by configuring OpenSSL with perl Configure VC-WIN32 fips (no-asm) or perl Configure VC-WIN64A fips (no-asm). Not hard at all if your are used to building OpenSSL on Windows.

If you follow the rules, this validation and certificate applies:
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1747
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140crt/FIPS140ConsolidatedCertList0018.pdf
Note: somebody that downloads my openssl-fips build cannot know for sure that I followed the rules, so he cannot claim FIPS validation. He will have to build openssl-fips for himself to be sure.

I will not claim certification either, but it is not a 'because we can' issue. The sites we build for our US customers might contain patient data, so HIPAA comes into play. HIPAA does not require FIPS validation. but requires a 'business associate' to implement a mechanism to encrypt electronic protected health information whenever deemed appropriate. See http://www.hipaa.com/2009/07/transmission-security-encryption-what-to-do-and-how-to-do-it/

From the same page:

[Jan-E]

I have upgraded the x86 vc9 version to OpenSSL-fips 1.0.1j

https://phpdev.toolsforresearch.com/openssl-1.0.1j-fips-2.4.10-x86-vc9.zip

The others will follow.

[glsmith]

[Jan-E]

[gman8321]

Jan-E. Appreciate you work on this. I'm testing your openssl-1.0.1j-fips-2.4.10-x64-vc11 module prior to attempting my own build. I receive the following errors:

httpd.exe: Syntax error on line 17 of path/conf/httpd.conf: Cannot load path/modules/mod_ssl_fips.so into server: The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or us .

Activation context generation failed for "path\modules\mod_ssl_fips.so". Dependent Assembly Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found. Please use sxstrace.exe for detailed diagnosis.

I copied openssl-1.0.1j-fips-2.4.10-x64-vc11\bin files to the Apache bin folder. Replaced the default mod_ssl.so with your mod_ssl.

Any thoughts on this?

[Jan-E]

Looking at the error message either your Apache or your mod_ssl_fips.so is VC9 X86. To check mod_ssl_fips.so open it for instance in Notepad++ and search for MSVC. There should be a reference to MSVCR110.dll there (and not to MSVCR90.dll) if you are using a VC11 Apache.

[Jan-E]

Updated to openssl-fips-1.0.1m-

[puertoblack2003]

thank you

[Jan-E]

I updated the 2.4.12 versions to OpenSSL 1.0.1p and added 2.4.16 versions.

The VC11 versions can be used with Apachelounge's builds:
https://www.apachelounge.com/download/VC11/

The VC9 versions can be used with Gregg's builds on Apachehaus:
http://www.apachehaus.com/cgi-bin/download.plx

The 2.4.16 versions contain a OpenSSL FIPS, built with ASM. OpenSSL 1.0.2d cannot be built with FIPS support yet:
http://thread.gmane.org/gmane.comp.encryption.openssl.devel/29763/focus=29823

I am using two references for the ciphersuites:
https://cipherli.st/ (with a special warning for Dutch visitors)

But somewhat more authoritative:
https://wiki.mozilla.org/Security/Server_Side_TLS
This Wiki page has an Modern compatibility and a Intermediate compatibility suite
https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

Benefit of using the Wiki page is that it will be updated once in a while.

[James Blond]

[Jan-E]

Your cipherlist has one nasty thing. Open your site in Chrome, click on the lock symbol, then on the Connection tab.

In Dutch it tells me:

[James Blond]

It seems that chrome uses still the SHA1 which I tought I replaced ... I look into that.

[James Blond]

it might tells "old" and not modern, however it is 256 bit vs 128 bit.

I managed to get it working with 256 except Chrome

[James Blond]

Chrome might barf about a not modern config, hoever the encryption is not 256 in all cases. That is why I switched back to

[Cy4n1d3]

Hey Jan-E,

do you by chance have a compiled version of the needed Apache 2.4.23 files with OpenSSL FIPS?

Regards Chris

[Jan-E]

https://phpdev.toolsforresearch.com/openssl-1.0.2j-fips-2.4.23-x64-vc14.zip
https://phpdev.toolsforresearch.com/openssl-1.0.2j-fips-2.4.23-x86-vc14.zip

I also have VC9 and VC11 versions of the same, but I suppose you are looking for the VC14 ones. These files also contain mod_fcgid.so, mod_http2.so and mod_proxy_http2.so, but the OpenSSL files are there as well.

[Cy4n1d3]

VC14 is perfect, thanks alot!