]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e113a92) | patch
Add FIPS self test updates
authorslontis <shane.lontis@oracle.com>
Fri, 16 Aug 2024 09:10:22 +0000 (19:10 +1000)
committerPauli <ppzgs1@gmail.com>
Tue, 20 Aug 2024 00:05:13 +0000 (10:05 +1000)
commit96de408228031511e38f8b14a9b7af26f988e72d
tree9488136388a08c5f41c9cca8cb44dd697389702dtree
parente113a92e290b31aaeab9a3f24b2cd6011c5ee670commit | diff
Add FIPS self test updates

After reviewing the FIPS 140-3 IG self tests requirements the following
were added:

- TDES Decryption (Not sure why this was missing)
- DH changed to use ffdhe2048 instead of P,Q,G params.
- Signature code has been changed to use a msg rather than a digest as input.
(Since some digests dont provide the one shot API, the EVP_DigestSignFinal and
EVP_DigestVerifyFinal needed to be exposed to the FIPS provider). The
code is now shared between ED and the other key types.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25217)
crypto/evp/m_sigver.c diff | blob | blame | history
providers/fips/self_test_data.inc diff | blob | blame | history
providers/fips/self_test_kats.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git