mirror of
https://github.com/openssl/openssl.git
synced 2025-02-11 14:22:43 +08:00
635bf4946a
FIPS 140-2 IG D.9 has become FIPS 140-3 D.G (see "Mapping FIPS 140-2 IGs to FIPS 140-3" in the FIPS 140-3 IG). The requirements w.r.t. RSA KATs have now been relaxed, meaning that existing full-message RSA signature verification (which is performed separately) is sufficient to meet KAT requirements for all RSA usecases (KEM/Encrypt/Decrypt/Sign/Verify). Dropping this KAT is very useful, because it is large/expensive on module startup, but also because it enables in the future to block RSA Encrypt/Decrypt operations with paddings other than OAEP, which are legacy or deprecated by either current or draft algorithm transition SP. Reviewed-by: Paul Dale <ppzgs1@gmail.com> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/25988) |
||
|---|---|---|
| .. | ||
| include | ||
| build.info | ||
| fips_entry.c | ||
| fipsindicator.c | ||
| fipsprov.c | ||
| self_test_data.inc | ||
| self_test_kats.c | ||
| self_test.c | ||
| self_test.h | ||