Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init' | linux-crypto

[PATCH 0/3] crypto: ecdh - register NIST P384 · Hui Tang <hidden> · 2021-05-12
[PATCH 1/3] crypto: ecdh - fix 'ecdh_init' · Hui Tang <hidden> · 2021-05-12
Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init' · Herbert Xu <herbert@gondor.apana.org.au> · 2021-05-21
Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init' · Hui Tang <hidden> · 2021-05-21
Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init' · Herbert Xu <herbert@gondor.apana.org.au> · 2021-05-21
Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init' · Stephan Mueller <hidden> · 2021-05-21
[PATCH 2/3] crypto: ecdh - register NIST P384 tfm · Hui Tang <hidden> · 2021-05-12
[PATCH 3/3] crypto: ecdh - add test suite for NIST P384 · Hui Tang <hidden> · 2021-05-12

Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init'

From: Stephan Mueller <hidden>
Date: 2021-05-21 09:43:05
Also in: lkml

Am Freitag, dem 21.05.2021 um 16:13 +0800 schrieb Herbert Xu:

On Fri, May 21, 2021 at 04:08:10PM +0800, Hui Tang wrote:


Stephan, can you confirm that both ecdh-nist-p192 and ecdsa-nist-p192
should be disabled in FIPS mode?

Confirmed with the following caveat: sigver is allowed due to legacy
considerations. Siggen / ECDH is only allowed for curves P-224 and higher.

As we introduce ECDSA today, I would not consider a legacy mode and thus
disable P-192.

Ciao
Stephan

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help