Searched hist:ad79cdd77fc1466e45cf923890f66bcfe7c43f12 (Results 1 – 2 of 2) sorted by relevance
| /linux/crypto/ |
| H A D | des_generic.c | diff ad79cdd77fc1466e45cf923890f66bcfe7c43f12 Wed Dec 17 06:51:13 CET 2008 Jarod Wilson <jarod@redhat.com> crypto: des3_ede - permit weak keys unless REQ_WEAK_KEY set
While its a slightly insane to bypass the key1 == key2 ||
key2 == key3 check in triple-des, since it reduces it to the
same strength as des, some folks do need to do this from time
to time for backwards compatibility with des.
My own case is FIPS CAVS test vectors. Many triple-des test
vectors use a single key, replicated 3x. In order to get the
expected results, des3_ede_setkey() needs to only reject weak
keys if the CRYPTO_TFM_REQ_WEAK_KEY flag is set.
Also sets a more appropriate RES flag when a weak key is found.
Signed-off-by: Jarod Wilson <jarod@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
|
| /linux/arch/s390/crypto/ |
| H A D | des_s390.c | diff 03b56ce54143a3a69d4fea6ff8130b1c903a47ce Thu Jun 18 13:52:59 CEST 2009 Jarod Wilson <jarod@redhat.com> crypto: des_s390 - Permit weak keys unless REQ_WEAK_KEY set
Just started running fips cavs test vectors through an s390x system
for giggles, and discovered that I missed patching s390's arch-specific
des3 implementation w/an earlier des3 patch to permit weak keys.
This change adds the same flag tweaks as
ad79cdd77fc1466e45cf923890f66bcfe7c43f12 (crypto: des3_ede - permit
weak keys unless REQ_WEAK_KEY set) for s390's des3 implementation,
yields expected test results now.
Signed-off-by: Jarod Wilson <jarod@redhat.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
|