Diffusion libgcrypt 057844700ec2

pkdf2: Add checks for FIPS.
057844700ec2
Actions

Tags

None

Subscribers

None

Description

pkdf2: Add checks for FIPS.

* cipher/kdf.c (_gcry_kdf_pkdf2): Require 8 chars passphrase for FIPS.
Set bounds for salt length and iteration count in FIPS mode.

Cherry-picked from master branch of:
f4a861f3e5ae82f278284061e4829c03edf9c3a7

GnuPG-bug-id: T6039
Signed-off-by: Jakub Jelen <jjelen@redhat.com>

Details

Provenance

Jakuje	Authored on Nov 18 2022, 1:49 AM
• gniibe	Committed on Nov 18 2022, 2:09 AM

Parents

rC44789af6c23b: doc: Update document for pkg-config and libgcrypt.m4.

Branches

Unknown

Tags

Unknown

Tasks

T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF

Event Timeline

• gniibe committed rC057844700ec2: pkdf2: Add checks for FIPS. (authored by Jakuje).Nov 18 2022, 2:09 AM

• gniibe added a task: T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.Fri, Jan 30, 10:43 AM

Changes (1)

Path

Size

cipher/

rC057844700ec2

cipher/kdf.c

Loading...