diff options
| author | Hans Nilsson <[email protected]> | 2017-06-01 17:17:39 +0200 |
|---|---|---|
| committer | Hans Nilsson <[email protected]> | 2017-06-12 12:22:34 +0200 |
| commit | 8a2640f29b4dce4ffe7fdc7480b7ac377ab96093 (patch) | |
| tree | ad4895d6f15f8ba5812ba20722e63042ea095507 /lib/crypto | |
| parent | 4665af0b305cb45e2bf5da10ca540a0a032ece47 (diff) | |
| download | otp-8a2640f29b4dce4ffe7fdc7480b7ac377ab96093.tar.gz otp-8a2640f29b4dce4ffe7fdc7480b7ac377ab96093.tar.bz2 otp-8a2640f29b4dce4ffe7fdc7480b7ac377ab96093.zip | |
crypto: filter out small mod in test suite for rsa keygen in FIPS mode
Diffstat (limited to 'lib/crypto')
| -rw-r--r-- | lib/crypto/test/crypto_SUITE.erl | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/lib/crypto/test/crypto_SUITE.erl b/lib/crypto/test/crypto_SUITE.erl index 30ee782fe9..1390ee9650 100644 --- a/lib/crypto/test/crypto_SUITE.erl +++ b/lib/crypto/test/crypto_SUITE.erl @@ -809,8 +809,15 @@ do_generate({ecdh = Type, Curve, Priv, Pub}) -> ct:fail({{crypto, generate_key, [Type, Priv, Curve]}, {expected, Pub}, {got, Other}}) end; do_generate({rsa = Type, Mod, Exp}) -> - {Pub,Priv} = crypto:generate_key(Type, {Mod,Exp}), - do_sign_verify({rsa, sha256, Pub, Priv, rsa_plain()}). + case crypto:info_fips() of + enabled when Mod < 3072 -> + ct:log("SKIP do_generate ~p FIPS=~p, Mod=~p Exp=~p", [Type, enabled, Mod, Exp]), + {skip, "FIPS violation"}; + FIPS -> + ct:log("do_generate ~p FIPS=~p, Mod=~p Exp=~p", [Type, FIPS, Mod, Exp]), + {Pub,Priv} = crypto:generate_key(Type, {Mod,Exp}), + do_sign_verify({rsa, sha256, Pub, Priv, rsa_plain()}) + end. notsup(Fun, Args) -> Result = |