On 07/31/2012 09:08 AM, Vasantharangan, Shruthi M. wrote:
Hi, I have downloaded the source for 3.12.9 which supports the DRBG. The fipstest tool which uses the private interface for random number generation which calls from ~lib/freebl/drbg.c. I notice that for a DRBG input file (got from DRBG) consisting of input type Hash SHA256_DRBG, the generated bits does not match what is predicted by NIST. The fipstest.c correctly reads and sets the various parameters from the input file correctly. I am trying to do a sanity check before using the NSS api. We are looking at an option to install NSS manually (since the default shipped with RHEL 5 uses libsoftoken for 3.11.4).Rgds Shruthi
you need cmd/fipstest which calls drbg.c. bob
-- dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
