openssl speed fails in FIPS mode #17331
Conversation
beldmit
added
branch: 3.0
apps/speed.c
Outdated
| if (!EVP_MAC_CTX_set_params(loopargs[i].mctx, params)) { | ||
| EVP_MAC_CTX_free(loopargs[i].mctx); | ||
| loopargs[i].mctx = NULL; | ||
| } |
There was a problem hiding this comment.
I'd just add a label after skip over to it instead of running the benchmark with NULL mctx. (Perhaps add some comment.)
There was a problem hiding this comment.
@t8m sorry, I don't get your idea :(
There was a problem hiding this comment.
I'd just add a label at if (doit[D_CBC_DES]) { and put goto here.
There was a problem hiding this comment.
Hmmm... Thanks, I will consider it.
|
Currently we have a code potentially allowing more than one loopargs |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 30 days ago |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 61 days ago |
|
What is needed to progress this? |
|
I need find some time to implement it according Tomaš's suggestion |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 30 days ago |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 61 days ago |
|
This PR is in a state where it requires action by @openssl/committers but the last update was 92 days ago |
t8m
added
stalled: awaiting contributor response
|
This PR is waiting for the creator to make requested changes but it has not been updated for 30 days. If you have made changes or commented to the reviewer please make sure you re-request a review (see icon in the 'reviewers' section). |
@beldmit, are you still aware of this PR? |
|
I'm still aware but it's relatively low in my priority list for now |
|
This PR is waiting for the creator to make requested changes but it has not been updated for 30 days. If you have made changes or commented to the reviewer please make sure you re-request a review (see icon in the 'reviewers' section). |
...because it uses md5 for HMAC tests. Skip md5 in case of its unavailability.
beldmit
added
approval: review pending
|
I finally decided to fix it :) |
t-j-h
removed
the
approval: otc review pending
paulidale
added
approval: done
openssl-machine
added
approval: ready to merge
|
This pull request is ready to merge |
...because it uses md5 for HMAC tests. Skip md5 in case of its unavailability. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from #17331)
|
Merged, thanks. |
...because it uses md5 for HMAC tests. Skip md5 in case of its unavailability. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from openssl#17331)
...because it uses md5 for HMAC tests. Skip md5 in case of its unavailability. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from openssl#17331)
...because it uses md5 for HMAC tests. Skip md5 in case of its
unavailability.
Checklist