[openssl/openssl] fd1520: fips: update DSA security check to fix legacy veri...

Pauli noreply at github.com
Wed Jun 14 23:24:07 UTC 2023


  Branch: refs/heads/openssl-3.0
  Home:   https://github.com/openssl/openssl
  Commit: fd1520e0b9435fd0b37604c80bf51b7936410e91
      https://github.com/openssl/openssl/commit/fd1520e0b9435fd0b37604c80bf51b7936410e91
  Author: Pauli <pauli at openssl.org>
  Date:   2023-06-15 (Thu, 15 Jun 2023)

  Changed paths:
    M providers/common/securitycheck.c
    M test/recipes/20-test_cli_fips.t
    M test/recipes/30-test_evp_data/evppkey_dsa.txt

  Log Message:
  -----------
  fips: update DSA security check to fix legacy verify strengths

Refer SP 800-131Ar2 table 2:
    https://csrc.nist.gov/publications/detail/sp/800-131a/rev-2/final

Fixes #21185

Reviewed-by: Shane Lontis <shane.lontis at oracle.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/21186)

(cherry picked from commit 71cf587ea21c1422640847e358019a51806d2811)




More information about the openssl-commits mailing list