b0cff60812
Resolves: RHEL-80854 Resolves: RHEL-50208 Resolves: RHEL-50210 Resolves: RHEL-50211 Resolves: RHEL-85954
52 lines
2.0 KiB
Diff
52 lines
2.0 KiB
Diff
From 7dc0e5c5dbab91874602bbe73a3c0b627283ff64 Mon Sep 17 00:00:00 2001
|
|
From: Simo Sorce <simo@redhat.com>
|
|
Date: Tue, 15 Apr 2025 13:41:42 -0400
|
|
Subject: [PATCH 50/50] FIPS: fix disallowed digests tests
|
|
|
|
Signed-off-by: Simo Sorce <simo@redhat.com>
|
|
---
|
|
test/recipes/30-test_evp_data/evpkdf_ssh.txt | 10 ++++++----
|
|
1 file changed, 6 insertions(+), 4 deletions(-)
|
|
|
|
diff --git a/test/recipes/30-test_evp_data/evpkdf_ssh.txt b/test/recipes/30-test_evp_data/evpkdf_ssh.txt
|
|
index 6688c217aa..8347f773e6 100644
|
|
--- a/test/recipes/30-test_evp_data/evpkdf_ssh.txt
|
|
+++ b/test/recipes/30-test_evp_data/evpkdf_ssh.txt
|
|
@@ -4894,13 +4894,14 @@ Title = FIPS indicator tests
|
|
Availablein = fips
|
|
FIPSversion = >=3.4.0
|
|
KDF = SSHKDF
|
|
+Unapproved = 1
|
|
Ctrl.digest = digest:SHA512-256
|
|
Ctrl.hexkey = hexkey:0000008055bae931c07fd824bf10add1902b6fbc7c665347383498a686929ff5a25f8e40cb6645ea814fb1a5e0a11f852f86255641e5ed986e83a78bc8269480eac0b0dfd770cab92e7a28dd87ff452466d6ae867cead63b366b1c286e6c4811a9f14c27aea14c5171d49b78c06e3735d36e6a3be321dd5fc82308f34ee1cb17fba94a59
|
|
Ctrl.hexxcghash = hexxcghash:a4ebd45934f56792b5112dcd75a1075fdc889245
|
|
Ctrl.hexsession_id = hexsession_id:a4ebd45934f56792b5112dcd75a1075fdc889245
|
|
Ctrl.type = type:A
|
|
-Result = KDF_CTRL_ERROR
|
|
-Reason = digest not allowed
|
|
+Result = KDF_MISMATCH
|
|
+#Reason = digest not allowed
|
|
|
|
# Test that the operation with unapproved digest function is is reported as
|
|
# unapproved
|
|
@@ -4920,13 +4921,14 @@ Output = d37ea221cbcc026d95e8c10b7d28a1b41e4ec1b497bae0e4cdbc1446e5bd59e2
|
|
Availablein = fips
|
|
FIPSversion = >=3.4.0
|
|
KDF = SSHKDF
|
|
+Unapproved = 1
|
|
Ctrl.digest = digest:SHA1
|
|
Ctrl.hexkey = hexkey:0102030405060708090a0b
|
|
Ctrl.hexxcghash = hexxcghash:a4ebd45934f56792b5112dcd75a1075fdc889245
|
|
Ctrl.hexsession_id = hexsession_id:a4ebd45934f56792b5112dcd75a1075fdc889245
|
|
Ctrl.type = type:A
|
|
-Result = KDF_CTRL_ERROR
|
|
-Reason = invalid key length
|
|
+Result = KDF_MISMATCH
|
|
+#Reason = invalid key length
|
|
|
|
# Test that the key whose length is shorter than 112 bits is reported as
|
|
# unapproved
|
|
--
|
|
2.49.0
|
|
|