Currently, the KAT for ECDSA only tests for deterministic ECDSA with rfc6979 flag. For FIPS, a test for non-deterministic ECDSA is also required, this is achieved by setting the k with label.
Also, in FIPS mode, label is not allowed and needs to be differentiate. Lucas Mulling (2): cipher: Add KAT for non-rfc6979 ECDSA with fixed k cipher: Differentiate use of label K in the SLI cipher/ecc.c | 69 ++++++++++++++++++++++++++++++++++---- src/gcrypt.h.in | 1 + tests/t-fips-service-ind.c | 10 +++--- 3 files changed, 69 insertions(+), 11 deletions(-) -- 2.48.1 _______________________________________________ Gcrypt-devel mailing list Gcrypt-devel@gnupg.org https://lists.gnupg.org/mailman/listinfo/gcrypt-devel
