From: Stephan Mueller <smueller@chronox.de>
To: Gilad Ben-Yossef <gilad@benyossef.com>
Cc: "Bhat, Jayalakshmi Manjunath" <jayalakshmi.bhat@hp.com>,
"linux-crypto@vger.kernel.org" <linux-crypto@vger.kernel.org>
Subject: Re: CAVS test harness
Date: Thu, 11 Jul 2019 13:54:05 +0200 [thread overview]
Message-ID: <2656048.2Ru0tYgSs3@tauon.chronox.de> (raw)
In-Reply-To: <CAOtvUMcUeVYh_eUrQWqunR8NUpos5-7zRU0jn0RdSTMtikm0XQ@mail.gmail.com>
Am Dienstag, 9. Juli 2019, 13:34:21 CEST schrieb Gilad Ben-Yossef:
Hi Gilad,
> On Tue, Jul 9, 2019 at 9:44 AM Bhat, Jayalakshmi Manjunath
>
> <jayalakshmi.bhat@hp.com> wrote:
> > Hi All,
> >
> > We are working on a product that requires NIAP certification and use IPSec
> > environment for certification. IPSec functionality is achieved by third
> > party IPsec library and native XFRM. Third party IPsec library is used
> > for ISAKMP and XFRM for IPsec.
> >
> > CAVS test cases are required for NIAP certification. Thus we need to
> > implement CAVS test harness for Third party library and Linux crypto
> > algorithms. I found the documentation on kernel crypto API usage.
> >
> > Please can you indication what is the right method to implement the test
> > harness for Linux crypto algorithms. 1. Should I implement CAVS test
> > harness for Linux kernel crypto algorithms as a user space application
> > that exercise the kernel crypto API? 2. Should I implement CAVS
> > test harness as module in Linux kernel?
> >
> >
> > Any information on this will help me very much on implementation.
>
> Are you sure the needed tests are not already implemented in the
> kernel crypto API testmgr?
The testmgr implements the power-on self tests required by FIPS 140-2. But
CAVS testing implies that there is a large set of test vectors which need to
be processed by the crypto implementations.
These test vectors are generated anew for each test round. Only the test
approach remains stable.
>
> Gilad
Ciao
Stephan
next prev parent reply other threads:[~2019-07-11 12:00 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-07-09 6:43 CAVS test harness Bhat, Jayalakshmi Manjunath
2019-07-09 11:34 ` Gilad Ben-Yossef
2019-07-09 16:07 ` Bhat, Jayalakshmi Manjunath
2019-07-10 14:05 ` Gilad Ben-Yossef
2019-07-11 11:54 ` Stephan Mueller [this message]
2019-07-11 11:52 ` Stephan Mueller
2019-07-11 11:59 ` Stephan Mueller
2019-07-11 15:22 ` Bhat, Jayalakshmi Manjunath
2019-07-11 15:33 ` Stephan Mueller
2019-07-12 17:55 ` Bhat, Jayalakshmi Manjunath
2019-07-12 18:35 ` Eric Biggers
2019-07-13 15:49 ` Bhat, Jayalakshmi Manjunath
2019-07-12 20:05 ` Stephan Mueller
2019-07-13 16:04 ` Bhat, Jayalakshmi Manjunath
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=2656048.2Ru0tYgSs3@tauon.chronox.de \
--to=smueller@chronox.de \
--cc=gilad@benyossef.com \
--cc=jayalakshmi.bhat@hp.com \
--cc=linux-crypto@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox