| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 12 May 2009 15:08:23 -0400 From: Neil Horman <nhorman@...driver.com> To: Jarod Wilson <jarod@...hat.com> Cc: Herbert Xu <herbert@...dor.apana.org.au>, linux-crypto@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH 1/2 v2] crypto: mark algs allowed in fips mode On Mon, May 11, 2009 at 09:52:43AM -0400, Jarod Wilson wrote: > Set the fips_allowed flag in testmgr.c's alg_test_descs[] for algs > that are allowed to be used when in fips mode. > > One caveat: des isn't actually allowed anymore, but des (and thus also > ecb(des)) has to be permitted, because disallowing them results in > des3_ede being unable to properly register (see des module init func). > > Also, crc32 isn't technically on the fips approved list, but I think > it gets used in various places that necessitate it being allowed. > > This list is based on > http://csrc.nist.gov/groups/STM/cavp/index.html > > Important note: allowed/approved here does NOT mean "validated", just > that its an alg that *could* be validated. > > Resending with properly updated patch v2 tag. > > Signed-off-by: Jarod Wilson <jarod@...hat.com> > Acked-by: Neil Horman <nhorman@...driver.com> > -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists