mirror of
https://github.com/openssl/openssl.git
synced 2025-01-24 13:55:42 +08:00
6f20c6804e
For FIPS 140-3 the continuous tests specified in SP 800-90B need to be
included on the output of any entropy source.
They are implemented here as a replacement for the primary DRBG in the FIPS
provider. This results in a setup that looks like this:
+-------------+
| |
| Seed Source |
| |
+------+------+
|
|
v
+-------------+
| |
| CRNG Test |
| |
++----------+-+
| |
| |
v v
+--------------+ +--------------+
| | | |
| Public DRBG | | Private DRBG |
| | | |
+--------------+ +--------------+
An additional benefit, that of avoiding DRBG chains, is also gained.
The current standards do not permit the output of one DRBG to be used
as the input for a second (i.e. a chain).
This also leaves open the future possibility of incorporating a seed
source inside the FIPS boundary.
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25415)
|
||
|---|---|---|
| .. | ||
| __DECC_INCLUDE_EPILOGUE.H | ||
| __DECC_INCLUDE_PROLOGUE.H | ||
| asn1.h | ||
| bio_addr.h | ||
| bio_tfo.h | ||
| bio.h | ||
| common.h | ||
| comp.h | ||
| conf.h | ||
| constant_time.h | ||
| core.h | ||
| crmf.h | ||
| cryptlib.h | ||
| dane.h | ||
| deprecated.h | ||
| der.h | ||
| deterministic_nonce.h | ||
| dso.h | ||
| dsoerr.h | ||
| e_os.h | ||
| e_winsock.h | ||
| endian.h | ||
| err.h | ||
| ffc.h | ||
| hashtable.h | ||
| hpke_util.h | ||
| json_enc.h | ||
| ktls.h | ||
| list.h | ||
| namemap.h | ||
| nelem.h | ||
| numbers.h | ||
| o_dir.h | ||
| packet_quic.h | ||
| packet.h | ||
| param_build_set.h | ||
| param_names.h.in | ||
| params.h | ||
| passphrase.h | ||
| priority_queue.h | ||
| property.h | ||
| propertyerr.h | ||
| provider.h | ||
| qlog_event_helpers.h | ||
| qlog_events.h | ||
| qlog.h | ||
| quic_ackm.h | ||
| quic_cc.h | ||
| quic_cfq.h | ||
| quic_channel.h | ||
| quic_demux.h | ||
| quic_engine.h | ||
| quic_error.h | ||
| quic_fc.h | ||
| quic_fifd.h | ||
| quic_lcidm.h | ||
| quic_port.h | ||
| quic_predef.h | ||
| quic_rcidm.h | ||
| quic_reactor.h | ||
| quic_record_rx.h | ||
| quic_record_tx.h | ||
| quic_record_util.h | ||
| quic_rx_depack.h | ||
| quic_sf_list.h | ||
| quic_srt_gen.h | ||
| quic_srtm.h | ||
| quic_ssl.h | ||
| quic_statm.h | ||
| quic_stream_map.h | ||
| quic_stream.h | ||
| quic_thread_assist.h | ||
| quic_tls.h | ||
| quic_tserver.h | ||
| quic_txp.h | ||
| quic_txpim.h | ||
| quic_types.h | ||
| quic_vlint.h | ||
| quic_wire_pkt.h | ||
| quic_wire.h | ||
| rcu.h | ||
| recordmethod.h | ||
| refcount.h | ||
| ring_buf.h | ||
| safe_math.h | ||
| sha3.h | ||
| sizes.h | ||
| sm3.h | ||
| sockets.h | ||
| ssl3_cbc.h | ||
| ssl.h | ||
| sslconf.h | ||
| statem.h | ||
| symhacks.h | ||
| thread_arch.h | ||
| thread_once.h | ||
| thread.h | ||
| time.h | ||
| tlsgroups.h | ||
| to_hex.h | ||
| tsan_assist.h | ||
| uint_set.h | ||
| unicode.h | ||