[openssl/openssl] 76a9e7: fips: update DSA security check to fix legacy veri...
Pauli
noreply at github.com
Wed Jun 14 23:24:08 UTC 2023
Branch: refs/heads/openssl-3.1
Home: https://github.com/openssl/openssl
Commit: 76a9e73c8af02078c093fabdf768bd545ea3b1d9
https://github.com/openssl/openssl/commit/76a9e73c8af02078c093fabdf768bd545ea3b1d9
Author: Pauli <pauli at openssl.org>
Date: 2023-06-15 (Thu, 15 Jun 2023)
Changed paths:
M providers/common/securitycheck.c
M test/recipes/20-test_cli_fips.t
M test/recipes/30-test_evp_data/evppkey_dsa.txt
Log Message:
-----------
fips: update DSA security check to fix legacy verify strengths
Refer SP 800-131Ar2 table 2:
https://csrc.nist.gov/publications/detail/sp/800-131a/rev-2/final
Fixes #21185
Reviewed-by: Shane Lontis <shane.lontis at oracle.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/21186)
(cherry picked from commit 71cf587ea21c1422640847e358019a51806d2811)
More information about the openssl-commits
mailing list