git.ipfire.org Git - thirdparty/openssl.git/commit

author	slontis <shane.lontis@oracle.com>
	Thu, 21 Nov 2024 01:15:24 +0000 (12:15 +1100)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 18 Feb 2025 09:17:29 +0000 (10:17 +0100)
commit	b8b67b1907e9614933bde70814ea92bc52ed6f49
tree	4c5db65682ea11903d6f07a8e1637a08d59b9416	tree \| snapshot
parent	a25bcde26a4553af5ffcd698c5d6f504806efc01	commit \| diff

Add SLH-DSA FIPS self tests

This requires a keygen test, as well as Sign/Verify tests for at least 1
sha2 algorithm and 1 shake related algorithm.

A pairwise consistency test has also been added to the key generation.

Note that self test datat for the signature is currently stored as a
sha256 digest in order to reduce the memory footprint.
(Since the signature size for sha2/shake using 128s = ~8K, and for 128f = ~17K)

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25882)

include/openssl/self_test.h		diff \| blob \| blame \| history
providers/fips/self_test_data.inc		diff \| blob \| blame \| history
providers/fips/self_test_kats.c		diff \| blob \| blame \| history
providers/implementations/keymgmt/slh_dsa_kmgmt.c		diff \| blob \| blame \| history
test/slh_dsa.inc		diff \| blob \| blame \| history
test/slh_dsa_test.c		diff \| blob \| blame \| history