mirror of
https://github.com/hardkernel/linux.git
synced 2026-03-27 04:50:25 +09:00
04e49b41be
Add a new fips140_lab_util command 'show_invalid_inputs' which uses AF_ALG to call some crypto algorithms with invalid parameters to show that they fail. This is needed to meet a new requirement we've received from the lab. This requirement is vague, but a representative sample of algorithms and inputs appears to be acceptable. For this to work, AF_ALG needs to be enabled in the kernel. This makes fips140_lab_util start depending on a custom kernel build, not just on a custom fips140 module build as was the case before. However, the lab testing was going to need custom boot images anyway once fips140.ko is included in the normal builds, since the production build of fips140.ko won't have CONFIG_CRYPTO_FIPS140_MOD_EVAL_TESTING=y. AF_ALG is also needed to do the Jitter RNG entropy analysis properly, and the AF_ALG-enabled kernel can also be reused for ACVP testing. Bug: 188620248 Change-Id: I69054eab5005fc3ca0ea081760877f73ea229f5b Signed-off-by: Eric Biggers <ebiggers@google.com>