[PATCH 0/4] Differentiate use of non-compliant flags in the SLI
NIIBE Yutaka
gniibe at fsij.org
Wed Mar 5 06:41:12 CET 2025
Lucas Mulling wrote:
> FIPS requires that the following flags be differentiated in the SLI:
> * igninvflag;
> * no-blinding;
> * random-override.
>
> Lucas Mulling (4):
> cipher: Differentiate igninvflag in the SLI
> cipher: Differentiate no-blinding flag in the SLI
> cipher,visibility: Differentiate use of random-override in the SLI
> tests: Fix tests to account for differentiated flags
Let me apply and push the first two patches firstly. I'll push these
two.
For the third, it changes the behavior of gcry_pk_random_override_new
(adding rejection) to require major changes in tests (of the fourth). I
wonder if this is appropriate in 1.11. Let me consider for this.
--
More information about the Gcrypt-devel
mailing list