mirror of
https://github.com/openssl/openssl.git
synced 2024-11-23 01:54:39 +08:00
635bf4946a
FIPS 140-2 IG D.9 has become FIPS 140-3 D.G (see "Mapping FIPS 140-2 IGs to FIPS 140-3" in the FIPS 140-3 IG). The requirements w.r.t. RSA KATs have now been relaxed, meaning that existing full-message RSA signature verification (which is performed separately) is sufficient to meet KAT requirements for all RSA usecases (KEM/Encrypt/Decrypt/Sign/Verify). Dropping this KAT is very useful, because it is large/expensive on module startup, but also because it enables in the future to block RSA Encrypt/Decrypt operations with paddings other than OAEP, which are legacy or deprecated by either current or draft algorithm transition SP. Reviewed-by: Paul Dale <ppzgs1@gmail.com> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/25988) |
||
|---|---|---|
| .. | ||
| common | ||
| fips | ||
| implementations | ||
| baseprov.c | ||
| build.info | ||
| decoders.inc | ||
| defltprov.c | ||
| encoders.inc | ||
| fips-sources.checksums | ||
| fips.checksum | ||
| fips.module.sources | ||
| legacyprov.c | ||
| nullprov.c | ||
| prov_running.c | ||
| stores.inc | ||