1. 04 Jan, 2015 1 commit
  2. 22 Dec, 2014 1 commit
    • Stephan Mueller's avatar
      crypto: drbg - panic on continuous self test error · 905b42e5
      Stephan Mueller authored
      This patch adds a panic if the FIPS 140-2 self test error failed.
      Note, that entire code is only executed with fips_enabled (i.e. when the
      kernel is booted with fips=1. It is therefore not executed for 99.9% of
      all user base.
      
      As mathematically such failure cannot occur, this panic should never be
      triggered. But to comply with NISTs current requirements, an endless
      loop must be replaced with the panic.
      
      When the new version of FIPS 140 will be released, this entire
      continuous self test function will be ripped out as it will not be
      needed any more.
      
      This patch is functionally equivalent as implemented in ansi_cprng.c and drivers/char/random.c.
      Signed-off-by: default avatarStephan Mueller <smueller@chronox.de>
      Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
      905b42e5
  3. 27 Nov, 2014 1 commit
  4. 26 Nov, 2014 1 commit
  5. 10 Nov, 2014 1 commit
  6. 24 Oct, 2014 1 commit
  7. 05 Sep, 2014 1 commit
  8. 26 Aug, 2014 1 commit
  9. 25 Aug, 2014 8 commits
  10. 01 Aug, 2014 1 commit
  11. 10 Jul, 2014 1 commit
  12. 08 Jul, 2014 6 commits
  13. 04 Jul, 2014 3 commits
  14. 26 Jun, 2014 1 commit
  15. 20 Jun, 2014 1 commit
    • Stephan Mueller's avatar
      crypto: drbg - SP800-90A Deterministic Random Bit Generator · 541af946
      Stephan Mueller authored
      This is a clean-room implementation of the DRBG defined in SP800-90A.
      All three viable DRBGs defined in the standard are implemented:
      
       * HMAC: This is the leanest DRBG and compiled per default
       * Hash: The more complex DRBG can be enabled at compile time
       * CTR: The most complex DRBG can also be enabled at compile time
      
      The DRBG implementation offers the following:
      
       * All three DRBG types are implemented with a derivation function.
       * All DRBG types are available with and without prediction resistance.
       * All SHA types of SHA-1, SHA-256, SHA-384, SHA-512 are available for
         the HMAC and Hash DRBGs.
       * All AES types of AES-128, AES-192 and AES-256 are available for the
         CTR DRBG.
       * A self test is implemented with drbg_healthcheck().
       * The FIPS 140-2 continuous self test is implemented.
      Signed-off-by: default avatarStephan Mueller <smueller@chronox.de>
      Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
      541af946