1
2009-01-22 Werner Koch <wk@g10code.com>
3
* cavs_tests.sh: Pass option -D to driver if required.
5
* fipsdrv.c (run_dsa_sign): Use hash of the data.
6
(dsa_gen_with_seed): New.
7
(run_dsa_pqg_gen): Add args SEED and SEEDLEN and use them.
8
(main): Optically take a seed for dsa-pgq-gen.
9
(standalone_mode): New.
10
(main): Add option --standalone.
11
(print_dsa_domain_parameters): Implement standalone mode.
13
2009-01-21 Werner Koch <wk@g10code.com>
15
* fipsdrv.c (run_dsa_verify): Use gcry_mpi_scan again.
16
(run_rsa_derive): Also print N.
18
* fipsdrv.c (run_dsa_verify): Use hash of the data.
20
* pubkey.c (get_dsa_key_fips186_with_seed_new): New.
23
2008-12-11 Werner Koch <wk@g10code.com>
25
* fipsdrv.c (run_rsa_derive): New.
26
(main): Add mode rsa-derive.
28
2008-12-10 Werner Koch <wk@g10code.com>
30
* basic.c (main): Check for error after running self-test in
33
* pubkey.c (get_dsa_key_with_domain_new): New.
34
(get_dsa_key_fips186_with_domain_new): New.
35
(check_run): Call them.
37
2008-12-08 Werner Koch <wk@g10code.com>
39
* fipsdrv.c [W32]: Include fcntl.h.
41
2008-12-05 Werner Koch <wk@g10code.com>
43
* pubkey.c (get_dsa_key_new): Add arg transient_key.
46
2008-12-03 Werner Koch <wk@g10code.com>
48
* fipsdrv.c (run_dsa_pqg_gen): Facor code out into ..
49
(print_dsa_domain_parameters, dsa_gen): .. these two new functions.
50
(print_sexp, read_sexp_from_file): New.
52
(run_dsa_verify): New.
54
2008-12-02 Werner Koch <wk@g10code.com>
56
* fipsdrv.c: All standalone build.
58
* mpitests.c (mpi_powm): New.
60
2008-11-28 Werner Koch <wk@g10code.com>
64
* fipsdrv.c (print_mpi_line, print_data_line): New.
65
(run_dsa_pqg_gen): New.
66
(usage): Add mode dsa-pqg-gen.
68
2008-11-25 Werner Koch <wk@g10code.com>
70
* pubkey.c (get_dsa_key_new): New.
72
2008-11-24 Werner Koch <wk@g10code.com>
74
* tsexp.c (basic): Add test for format character S.
76
* pubkey.c (check_x931_derived_key): New.
77
(get_keys_x931_new): New.
78
(check_run): Check X9.31 generated RSA key.
80
2008-11-07 Werner Koch <wk@g10code.com>
82
* fipsdrv.c (run_cipher_mct_loop, get_current_iv): New.
83
(read_textline, read_hexline, skip_to_empty_line): New.
84
(main): New option --mct-server.
85
* cavs_driver.pl: Update from upstream and adjust to new fipsdrv.
87
2008-11-05 Werner Koch <wk@g10code.com>
89
* fipsdrv.c (run_encrypt_decrypt): Disable weak key detection.
91
2008-10-31 Werner Koch <wk@g10code.com>
93
* fipsdrv.c (run_rsa_sign): Buffer needs to be larger for SHA512.
95
2008-10-27 Werner Koch <wk@g10code.com>
97
* fipsdrv.c (run_encrypt_decrypt): Make IV_BUFFER optional.
99
* cavs_driver.pl: Remove the --no-fips flags.
100
(libgcrypt_encdec($$$$$)): Make IV optional.
101
(libgcrypt_state_cipher($$$$$)): Ditto.
103
2008-10-24 Werner Koch <wk@g10code.com>
105
* benchmark.c (md_bench): Do not test MD5 in fips mode.
106
* basic.c (check_digests, check_hmac): Ditto.
108
2008-10-06 Werner Koch <wk@g10code.com>
110
* cavs_driver.pl: New version from upstream.
111
(libgcrypt_rsa_verify($$$$)): Pass pkcs1.
112
(libgcrypt_rsa_sign($$$)): Pass pkcs1 and hash algo.
114
* fipsdrv.c (run_rsa_sign): Hash data in pkcs1 mode.
115
(run_rsa_verify): Ditto.
116
(read_key_file): Rename to read_private_key_file. Factor public
118
(read_public_key_file): .. new.
120
2008-10-02 Werner Koch <wk@g10code.com>
122
* fipsdrv.c (print_buffer): Add base64 printing code.
123
(base64_decode, read_key_file, parse_tag, read_sig_file): New.
124
(run_rsa_gen, run_rsa_sign): New.
125
(main): Add modes rsa-gen, rsa-sign and rsa-verify.
128
2008-09-29 Werner Koch <wk@g10code.com>
130
* fipsdrv.c: Merge code from fipsrngdrv.c
131
* fipsrngdrv.c: Remove.
133
2008-09-26 Werner Koch <wk@g10code.com>
135
* Makefile.am: Distribute cavs_driver.pl.
136
* cavs_tests.sh: New.
139
2008-09-18 Werner Koch <wk@g10code.com>
141
* benchmark.c (main): Do not disable secure memory in FIPS mode.
143
2008-09-18 Werner Koch <wk@g10code.com>
145
* basic.c (main): Do not disable secure memory in FIPS mode.
147
2008-09-16 Werner Koch <wk@g10code.com>
149
* fipsrngdrv.c (main): Bail out on write error. Implement verbose
151
(main): Use flag to disable dup block checks.
153
2008-09-15 Werner Koch <wk@g10code.com>
157
2008-09-09 Werner Koch <wk@g10code.com>
159
* basic.c (main): New option --selftest.
161
2008-08-29 Werner Koch <wk@g10code.com>
163
* keygrip.c: Update to also check ECDSA.
165
2008-08-28 Werner Koch <wk@g10code.com>
167
* rsa-16k.key: New sample key.
169
2008-08-27 Werner Koch <wk@g10code.com>
171
* pkbench.c (read_file): New.
172
(process_key_pair_file): Replace mmap by read_file.
173
(main): Add a --fips option.
174
* Makefile.am (EXTRA_DIST): Remove.
175
(EXTRA_PROGRAMS): Add pkbench.
177
* basic.c (main): Extended FIPS self-test test.
179
2008-08-26 Werner Koch <wk@g10code.com>
181
* basic.c (get_keys_new): Use transient-key flag.
182
* benchmark.c (main): First check options then do the libgcrypt
184
(rsa_bench): Use transient-key flag if not in fips mode.
186
2008-08-20 Werner Koch <wk@g10code.com>
188
* t-mpi-bit.c (test_lshift): New.
189
(mpi2bitstr_nlz, lshiftbitstring): New.
192
2008-08-18 Werner Koch <wk@g10code.com>
194
* basic.c (main): Add option --fips.
196
2008-08-15 Werner Koch <wk@g10code.com>
198
* register.c (main): Check for fips mode.
199
(check_run): Take care of fips mode.
201
* basic.c (check_cbc_mac_cipher, check_ciphers, check_digests)
202
(check_hmac, check_pubkey): Do not test unavalaible algorithms in
204
(main): Check for fips mode.
1
206
2008-04-22 Werner Koch <wk@g10code.com>
3
208
* basic.c (check_one_cipher): Also check in-place encryption.