Pauli 6f20c6804e fips: continuous random bit generator tests ... For FIPS 140-3 the continuous tests specified in SP 800-90B need to be included on the output of any entropy source. They are implemented here as a replacement for the primary DRBG in the FIPS provider. This results in a setup that looks like this: +-------------+ | | | Seed Source | | | +------+------+ | | v +-------------+ | | | CRNG Test | | | ++----------+-+ | | | | v v +--------------+ +--------------+ | | | | | Public DRBG | | Private DRBG | | | | | +--------------+ +--------------+ An additional benefit, that of avoiding DRBG chains, is also gained. The current standards do not permit the output of one DRBG to be used as the input for a second (i.e. a chain). This also leaves open the future possibility of incorporating a seed source inside the FIPS boundary. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/25415)		2024-09-19 08:44:14 +10:00
..
common	Add failed entropy continuous test error	2024-09-19 08:43:58 +10:00
fips	fips: continuous random bit generator tests	2024-09-19 08:44:14 +10:00
implementations	fips: continuous random bit generator tests	2024-09-19 08:44:14 +10:00
baseprov.c	Copyright year updates	2024-09-05 09:35:49 +02:00
build.info	Cleanups for FIPS options..	2024-08-28 14:46:16 +02:00
decoders.inc
defltprov.c	Copyright year updates	2024-09-05 09:35:49 +02:00
encoders.inc
fips-sources.checksums	make update	2024-09-05 09:37:42 +02:00
fips.checksum	make update	2024-09-05 09:37:42 +02:00
fips.module.sources	make update	2024-09-05 09:37:42 +02:00
legacyprov.c
nullprov.c
prov_running.c
stores.inc