diff options
author | pohsingwu <pohsingwu@synology.com> | 2024-01-28 18:18:02 +0800 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2024-03-01 11:06:03 +0100 |
commit | fbce6ebf706cdd273f2569edfea7ade106426e0b (patch) | |
tree | 2d598acb71f57e2fe8af34857e00126020e8cbb6 /include | |
parent | c18c301deb44deb27f35c199e8bf44ca8b80e579 (diff) |
Implement PCT for EDDSA
According to FIPS 140-3 IG 10.3.A Additonal Comment 1, a PCT shall be
performed consistent with the intended use of the keys.
This commit implements PCT for EDDSA via performing sign and verify
operations after key generated.
Also use the same pairwise test logic in EVP_PKEY_keygen and
EVP_PKEY_pairwise_check for EDDSA in FIPS_MODULE.
Add OSSL_SELF_TEST_DESC_PCT_EDDSA to OSSL_PROVIDER-FIPS page.
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23408)
Diffstat (limited to 'include')
-rw-r--r-- | include/openssl/self_test.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/include/openssl/self_test.h b/include/openssl/self_test.h index 337a3190ce..d7de90262c 100644 --- a/include/openssl/self_test.h +++ b/include/openssl/self_test.h @@ -46,6 +46,7 @@ extern "C" { # define OSSL_SELF_TEST_DESC_INTEGRITY_HMAC "HMAC" # define OSSL_SELF_TEST_DESC_PCT_RSA_PKCS1 "RSA" # define OSSL_SELF_TEST_DESC_PCT_ECDSA "ECDSA" +# define OSSL_SELF_TEST_DESC_PCT_EDDSA "EDDSA" # define OSSL_SELF_TEST_DESC_PCT_DSA "DSA" # define OSSL_SELF_TEST_DESC_CIPHER_AES_GCM "AES_GCM" # define OSSL_SELF_TEST_DESC_CIPHER_AES_ECB "AES_ECB_Decrypt" |