Page MenuHome GnuPG

PCT failures inconsistency in regards to the FIPS error state
Closed, ResolvedPublic


After keys are generated, the PCT are run, verifying the keys behave as expected and are usable. If they fail, the RSA calls fips_signal_error(), which moves the FIPS module to STATE_ERROR (recoverable), while for ECDSA keys, the log_fatal() is executed, which moves the FIPS module state to STATE_FATALERROR (non-recoverable).

This is not a big deal in regards to the FIPS according to the lab, but it would be great to sync on one behavior. Using the RSA approach sounds cleaner so this is my proposal


master, 1.10.x

Related Objects

Event Timeline

I think the patch is okay.

We have not done this in ECC because,iirc, the ECC support is newer than our old FIPS certification and at that time we did not care much about this.

gniibe triaged this task as Normal priority.
gniibe added a subscriber: gniibe.

Applied to both (1.10 and master).

gniibe changed the task status from Open to Testing.Mar 8 2023, 1:47 AM
gniibe moved this task from Next to Ready for release on the FIPS board.