Re: [PATCH RFC v3 3/3] crypto: add tests vectors for RSA

From: Tadeusz Struk
Date: Thu Jun 04 2015 - 12:29:13 EST

Next message: Jiang Liu: "Re: [Patch v4 0/8] Consolidate ACPI PCI root common code into ACPI core"
Previous message: Joe Perches: "Re: [Xen-devel] [PATCH v2 1/2] net/xen-netfront: Correct printf format in xennet_get_responses"
In reply to: Stephan Mueller: "Re: [PATCH RFC v3 3/3] crypto: add tests vectors for RSA"
Next in thread: Tadeusz Struk: "[PATCH RFC v3 1/3] crypto: add PKE API"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Stephan
On 06/03/2015 05:15 PM, Stephan Mueller wrote:
> May I ask that the outbuf_enc is memcmp()ed with an expected value? This check
> is required for FIPS 140-2 compliance. Without that memcmp, FIPS 140-2
> validations will not be successful.

Sure, I will do that. I wasn't aware that this was required.

>
> Sorry for bringing that one up just now: 512 and 1024 bit test vectors will
> not be helpful for several use cases, including FIPS. I can offer to give you
> 2k or 3k vectors.

I have one 2K vector from openSSL fips so I'll use it instead of the 512 one.

> Besides, wouldn't one vector be sufficient?

I think there is no harm to have these 3 vectors to make sure an implementation
is well tested.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jiang Liu: "Re: [Patch v4 0/8] Consolidate ACPI PCI root common code into ACPI core"
Previous message: Joe Perches: "Re: [Xen-devel] [PATCH v2 1/2] net/xen-netfront: Correct printf format in xennet_get_responses"
In reply to: Stephan Mueller: "Re: [PATCH RFC v3 3/3] crypto: add tests vectors for RSA"
Next in thread: Tadeusz Struk: "[PATCH RFC v3 1/3] crypto: add PKE API"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]