Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
fipstest.c in nss 3.14.3 needs updating for DRBG tests
46 views
Skip to first unread message
Bharath
Apr 17, 2013, 9:28:15 PM4/17/13
to
Hi ,
We were planning on using the nss drbg model for validating the HASH_DRBG implementation inside (nss-3.14.3/mozilla/security/nss/cmd/fipstest) .
The fipstest.c needs updating for FIPS SP800-90A testing to validate drbg .
Please refer to the following documents
Validation document -> http://csrc.nist.gov/groups/STM/cavp/documents/drbg/DRBGVS.pdf
In the above document the steps for Generating random number has changed to
(1) instantiate drbg
(2) reseed
(3) generate ReturnedBitsLen random bits, do not print
(4) generate ReturnedBitsLen random bits, print out
(5) uninstantiate.
For Prediction resistance false
Previously it was
(1) instantiate drbg
(2) generate ReturnedBitsLen random bits, do not print
(3) reseed
(4) generate ReturnedBitsLen random bits, print out
(5) uninstantiate.
The fipstest,.c and drbg.c needs updating .
Robert Relyea
Apr 19, 2013, 6:10:04 PM4/19/13
to dev-tec...@lists.mozilla.org
CVS. Your best best is to write a bug and attach a patch to it, and
request me to review it. That will put it on a list that will eventually
get my attention.
bob
Message has been deleted
bratc...@gmail.com
Apr 22, 2013, 7:16:05 PM4/22/13
to
Robert Relyea
Apr 23, 2013, 1:47:58 PM4/23/13
to dev-tec...@lists.mozilla.org
On 04/22/2013 04:16 PM, bratc...@gmail.com wrote:
>
>>
>>
>> I may have the required fipstest changes on the NSS 3.12.9.1 branch in
>>
>> CVS. Your best best is to write a bug and attach a patch to it, and
>>
>> request me to review it. That will put it on a list that will eventually
>>
>> get my attention.
>>
>>
>>
>> bob
>
> Thanks for your reply , this is my first time using the system , where do I file the bug ? Also how do i get access to the CVS fipstest code in nss 3.12.9.1 branch ?
You can file bugs at bugzilla.mozilla.org.
>
>>
>>
>> I may have the required fipstest changes on the NSS 3.12.9.1 branch in
>>
>> CVS. Your best best is to write a bug and attach a patch to it, and
>>
>> request me to review it. That will put it on a list that will eventually
>>
>> get my attention.
>>
>>
>>
>> bob
>
> Thanks for your reply , this is my first time using the system , where do I file the bug ? Also how do i get access to the CVS fipstest code in nss 3.12.9.1 branch ?
You can check out nss 3.12.9.1 with cvs as:
cvs -d :pserver:anon...@cvs-mirror.mozilla.org/cvsroot checkout -r
NSS_3_12_9_1_RTM mozilla/security
You can get nss 3.12.9.1 from hg as:
hg clone -r NSS_3_12_9_1_RTM https://hg.mozilla.org/projects/nss mozilla
>
>
>
Bharath
Apr 23, 2013, 7:35:05 PM4/23/13
to
On Tuesday, April 23, 2013 10:47:58 AM UTC-7, Robert Relyea wrote:
I got NSS_3_12_9_1_RTM checked out through CVS , but when I doa diff of the fipstest in this and one from 3.14 they are essentially the same , and the order of calling the drbg functions in the case statement remains the same
-Bharath
-Bharath
0 new messages