kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Clarify the error message for an ECDSA power-on test failure.

Browse Source 
We want to clarify that this isn't the PWCT that FIPS generally means,
but rather the power-on self-test. Since ECDSA is non-deterministic, we
have to implement that power-on self-test as a PWCT, but we have a
different flag to break that actual PWCT.

Change-Id: I3e27c6a6b0483a6c04e764d6af8a4a863e0b8b77
Reviewed-on: https://boringssl-review.googlesource.com/16765
Reviewed-by: Adam Langley <agl@google.com>
This commit is contained in:
Adam Langley 2017-05-31 15:42:55 -07:00
parent 0ffc795efb
commit b89e025cfa
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
crypto/fipsmodule/bcm.c
View File

@ -604,7 +604,7 @@ static void BORINGSSL_bcm_power_on_self_test(void) {
if (sig == NULL ||
!ECDSA_do_verify(kPlaintextSHA256, sizeof(kPlaintextSHA256), sig,
ec_key)) {
printf("ECDSA Sign/Verify PWCT failed.\n");
printf("ECDSA Sign/Verify power-on PWCT failed.\n");
goto err;
}