[Swan-dev] [libreswan/libreswan] `make rpm` in FIPS mode on Fedora 32 fails (#351) (fwd)
Paul Wouters
paul at nohats.ca
Mon Jul 6 20:36:52 UTC 2020
I wonder if the nonces are too small for FIPS with PRF SHA2_384
Paul
---------- Forwarded message ----------
Date: Mon, 6 Jul 2020 15:54:31
From: kavinda-forcepoint <notifications at github.com>
Cc: Subscribed <subscribed at noreply.github.com>
To: libreswan/libreswan <libreswan at noreply.github.com>
Subject: [libreswan/libreswan] `make rpm` in FIPS mode on Fedora 32 fails (#351)
Summary
Running make rpm in FIPS mode on Fedora 32 (64-bit) fails during the check stage.
The same make rpm succeeds when not in FIPS mode.
Details
Here's the tail end of the make rpm command output:
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.gcWkZk
+ umask 022
+ cd /root/rpmbuild/BUILD
+ cd libreswan-3.30rc1091_gd00b8d028a_peer_dn_wildcard_support
+ cp /root/rpmbuild/SOURCES/ikev1_dsa.fax.bz2 /root/rpmbuild/SOURCES/ikev1_psk.fax.bz2 /root/rpmbuild/SOURCES/ikev2.fax.bz2 .
+ bunzip2 ikev1_dsa.fax.bz2 ikev1_psk.fax.bz2 ikev2.fax.bz2
+ export NSS_DISABLE_HW_GCM=1
+ NSS_DISABLE_HW_GCM=1
+ : starting CAVS test for IKEv2
+ /root/rpmbuild/BUILDROOT/libreswan-3.30-0.rc1091_gd00b8d028a_peer_dn_wildcard_support.x86_64/usr/libexec/ipsec/cavp -v2 ike
v2.fax
+ diff -u ikev2.fax -
test: IKE v2
Reading from ikev2.fax
error: Bad exit status from /var/tmp/rpm-tmp.gcWkZk (%check)
RPM build errors:
Bad exit status from /var/tmp/rpm-tmp.gcWkZk (%check)
make: *** [Makefile:136: rpm] Error 1
Running the failed cavp command manually results in the following output:
# /root/rpmbuild/BUILDROOT/libreswan-3.30-0.rc1091_gd00b8d028a_peer_dn_wildcard_support.x86_64/usr/libexec/ipsec/cavp -v2 ike
v2.fax
<...Output truncated...>
DKM(Child SA D-H) = 3e29f420002132a7424067420f9e8c90ba9d9492a8d637f05a3696a815e05d1406ac68db18579c6e561db88573220a163f2c72c2e
71bb830cea759575859e14a825622904f034eee6341b82da35330da858a1ac3f78e06f6feffe6468c8eccc304d0e331ec8d820b9f7a61e374f2478b755822
0c7790fed40321cb93f5f37992dac2fcf7d8b7974715d96a88db6d5ecbe569a0f9b4f9df075a10644f062db722cb244fcb5b82cf1fbd9868464fd0ffa76fe
54c356c28dadb9db101bec49d23d7e47891d1af798f6c8e1f280a66764af57adb3870934a8a3327bd812a16b8dc622f9029af905ea2068bf7056ed3952158
fcdd2b5f91a1550a927b1066494930c2dd10cf8602870b19281397720d138ae583b10235af2f90710e6eff7991c4041ff6facc1a34f16e4d4e0e13d1f3187
5ed4f4dc199b762e4f5e16136bffeae03e4be9a418da3a598e864021372de4256d79d40002ecf0d8c1e5c08ceaa4720c669d10babc2406fb5bc64bc962d6e
9b039c940621e7951b2dee5b96f01f6919ad63
SKEYSEED(Rekey) = 7fa980970fd72be66f8f14a99ee8c38023668c14666e9c02405673733a16caa1
[g^ir length = 256]
[SHA-384]
[Ni length = 64]
[Nr length = 64]
[DKM length = 1056]
[Child SA DKM length = 1056]
COUNT = 0
Ni = fd1b572a8e735591
Nr = 6013b0ef88dacd3d
g^ir = d3288cd87565101e88fe3bad918f31939d8dd26ff1071f8b2d7f447524e58d7c
g^ir (new) = 3358f620539473aee8d07e779764c4c6a9aabddc79a28e136b3bac021dbde44a
SPIi = 2116ad07ce61f749
SPIr = 24880e55f11a65b7
SKEYSEED =
failure in SKEYSEED = prf(Ni | Nr, g^ir)
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or
unsubscribe.[AAW5L6KEYWKS6THJ7WMIG5TR2ITXPA5CNFSM4OR5KHYKYY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4JWZM5PQ.gif]
More information about the Swan-dev
mailing list