Home GnuPG
Diffusion libgcrypt 23a58b779e31

Disable 3DES in FIPS mode
23a58b779e31
Actions

Description

Disable 3DES in FIPS mode

* cipher/des.c (_gcry_cipher_spec_tripledes): Mark as non-FIPS
* cipher/mac-cmac.c ( _gcry_mac_type_spec_cmac_tripledes): Mark non-FIPS
* src/fips.c (run_cipher_selftests): skip 3DES selftests)
  (run_mac_selftests): skip CMAC_3DES selftests
* tests/basic.c (check_cfb_cipher): Do not expect the 3DES working in
  FIPS mode
  • Signed-off-by: Jakub Jelen <jjelen@redhat.com>

Details

Provenance
JakujeAuthored on Nov 12 2021, 5:06 PM
gniibeCommitted on Dec 1 2021, 6:16 AM
Parents
rC3d38968f4b75: Implement explicit FIPS indicators for cipher modes
Branches
Unknown
Tags
Unknown

Changes (4)

PathSize
cipher/
src/
tests/

rC23a58b779e31

View Options

cipher/des.c

Loading...
View Options

cipher/mac-cmac.c

Loading...
View Options

src/fips.c

Loading...
View Options

tests/basic.c

Loading...