Received: by 2002:a25:8b12:0:0:0:0:0 with SMTP id i18csp721064ybl;
        Fri, 16 Aug 2019 03:00:06 -0700 (PDT)
X-Google-Smtp-Source: APXvYqx09usxXP33zbZX7gHenlJ9XFbDKbfUDnJ7wOZ2EAfblu9bHVnzalG0F99Osc0YOWdNE0uT
X-Received: by 2002:a63:6fc9:: with SMTP id k192mr6968867pgc.20.1565949606047;
        Fri, 16 Aug 2019 03:00:06 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1565949606; cv=none;
        d=google.com; s=arc-20160816;
        b=fQzTktPhpINivE9eNKXk/MI2Ckw64U/bUG4TTgPNiq0fGiD+XKMmIRFftK9mbawfvC
         IHdn9YgQV/4O20g8PqvkLu5BQzHf++4CAGTEVHVQjb7/CNnuIyOA/lJq4R8+NFNY0Ke0
         dU7r3nf9EEQOcnGK1LdH0kRQHlDTbUPJLa56b1aDzlFnM2k6PljgDknFQTWREDo2MzTS
         tRDOkMiDyFYEGqqFDS8Rq4hedHBlAfCfhOsqju+F71dn41qhQAgyUohuxeICd/D8fm2c
         LHJxML9abtK4TXsqIx1dN+8+cZ63W5QFj39Kar/V2vla4XfomlXCM9yMG1AQE9k7m6iC
         eGuA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from
         :dkim-signature;
        bh=tyW0bpOjSe31Xa6m4jYfQoFLz+IIJNSHbon8X0Dr9vE=;
        b=ePm3X3J6xoiws5WFu2Pk3hHo5Cl2O5rWJldWZLSehzXiVMawjba4M6GUXOFfoduJiP
         VmeoDy3w4PNc3XMkuEAxWEMQoa395H2p/OAkOtnWeGGVhazXX3nsmfFrYIagFJvVYrCH
         khrK0c4eXXlLCbs5akZdjDJHeVPN+g9dmcm9ta6oqpXl0yVdihufn3GAF5VpTtPXNPO6
         xsz8WVucJfJx+BfrqldMvtJCqYFwW3uLMRu9W2D86et4/h91IhbEMVpbC7ytjaulBxJq
         1+tSnhBLd46ZQe+d7ggwQUldNBS4AyQX9gcWZdulTypdyGUQMMfk8g+RUVecMVsupjqY
         SFOg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=fail header.i=@chronox.de header.s=strato-dkim-0002 header.b=EXl9aXT+;
       spf=pass (google.com: best guess record for domain of linux-crypto-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Return-Path: <linux-crypto-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id bc12si3688848plb.211.2019.08.16.02.59.49;
        Fri, 16 Aug 2019 03:00:06 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-crypto-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=fail header.i=@chronox.de header.s=strato-dkim-0002 header.b=EXl9aXT+;
       spf=pass (google.com: best guess record for domain of linux-crypto-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1727064AbfHPJ6z (ORCPT <rfc822;cvimail81@gmail.com> + 99 others);
        Fri, 16 Aug 2019 05:58:55 -0400
Received: from mo4-p00-ob.smtp.rzone.de ([81.169.146.220]:19979 "EHLO
        mo4-p00-ob.smtp.rzone.de" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726842AbfHPJ6z (ORCPT
        <rfc822;linux-crypto@vger.kernel.org>);
        Fri, 16 Aug 2019 05:58:55 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1565949533;
        s=strato-dkim-0002; d=chronox.de;
        h=References:In-Reply-To:Message-ID:Date:Subject:Cc:To:From:
        X-RZG-CLASS-ID:X-RZG-AUTH:From:Subject:Sender;
        bh=tyW0bpOjSe31Xa6m4jYfQoFLz+IIJNSHbon8X0Dr9vE=;
        b=EXl9aXT+XdJFkSiDgoAb4b3qjgvcnmPYtYbMvfXf0x7KFOUFLNUCkiogQVMNqWuAMA
        1Ft5ku0DZiHLggc5M9tid8j8yWPqu3lT9oWSnHHeWj/bF5B1Ftrvp/e59BNK1gsvUu81
        IBzLZ6eKIR0NIA7kwDzhKjJTFF0W7WA5CD0U07HSe+lLUk6EAsb2fTIS+n3Zdu587oBg
        SIq/G+t3q6sEPRd2yclWSSLUONJjzSTOQ4bdxqhEEmWzHYFDjjqXsZ9p/tKmx/yj/Q8k
        V+oJiuAABcZpYxwkw6cOctYkLTf+DDyb0T/k8DdRynaHBS/Tc8JsET0jOBScEu0q4amY
        VS/g==
X-RZG-AUTH: ":P2ERcEykfu11Y98lp/T7+hdri+uKZK8TKWEqNyiHySGSa9k9xmwdNnzGHXPZIvSfYak+"
X-RZG-CLASS-ID: mo00
Received: from tauon.chronox.de
        by smtp.strato.de (RZmta 44.26.1 DYNA|AUTH)
        with ESMTPSA id u073a8v7G9wrI6k
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (curve secp521r1 with 521 ECDH bits, eq. 15360 bits RSA))
        (Client did not present a certificate);
        Fri, 16 Aug 2019 11:58:53 +0200 (CEST)
From:   Stephan Mueller <smueller@chronox.de>
To:     Ard Biesheuvel <ard.biesheuvel@linaro.org>
Cc:     "open list:HARDWARE RANDOM NUMBER GENERATOR CORE" 
        <linux-crypto@vger.kernel.org>
Subject: Re: XTS self test fail
Date:   Fri, 16 Aug 2019 11:58:52 +0200
Message-ID: <3679514.cbuEQNhLQo@tauon.chronox.de>
In-Reply-To: <CAKv+Gu8ipTEJBB_sXmOcajp1NSkCJfOSi=kuqZhLekxJ1sn_Ug@mail.gmail.com>
References: <1989109.29ScpdGMdu@positron.chronox.de> <CAKv+Gu8ipTEJBB_sXmOcajp1NSkCJfOSi=kuqZhLekxJ1sn_Ug@mail.gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="iso-8859-1"
Sender: linux-crypto-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-crypto.vger.kernel.org>
X-Mailing-List: linux-crypto@vger.kernel.org

Am Freitag, 16. August 2019, 11:52:33 CEST schrieb Ard Biesheuvel:

Hi Ard,

> On Fri, 16 Aug 2019 at 12:50, Stephan M=FCller <smueller@chronox.de> wrot=
e:
> > Hi,
> >=20
> > with the current cryptodev-2.6 code, I get the following with fips=3D1:
> >=20
> > [   22.301826] alg: skcipher: xts-aes-aesni encryption failed on test
> > vector "random: len=3D28 klen=3D64"; expected_error=3D0, actual_error=
=3D-22,
> > cfg=3D"random: inplace may_sleep use_final src_divs=3D[<reimport>100.0%=
@+20]
> > iv_offset=3D57"
> This is currently being discussed: we are adding support for
> ciphertext stealing (which is part of the XTS spec but currently
> unimplemented)

Sorry, I did not connect the dots here and failed to link the issue to the=
=20
ongoing discussion.
>=20
> Do you have CONFIG_CRYPTO_MANAGER_EXTRA_TESTS=3Dy enabled?

Yes.
>=20
> > [   22.304800] Kernel panic - not syncing: alg: self-tests for
> > xts-aes-aesni (xts(aes)) failed in fips mode!
> > [   22.305709] CPU: 0 PID: 259 Comm: cryptomgr_test Not tainted 5.3.0-r=
c1+
> > #9 [   22.305709] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996),
> > BIOS 1.12.0-2.fc30 04/01/2014
> > [   22.305709] Call Trace:
> > [   22.305709]  dump_stack+0x7c/0xc0
> > [   22.305709]  panic+0x240/0x453
> > [   22.305709]  ? add_taint.cold+0x11/0x11
> > [   22.305709]  ? __atomic_notifier_call_chain+0x5/0x130
> > [   22.305709]  ? notifier_call_chain+0x27/0xb0
> > [   22.305709]  alg_test+0x789/0x8d0
> > [   22.305709]  ? valid_testvec_config+0x1d0/0x1d0
> > [   22.305709]  ? lock_downgrade+0x380/0x380
> > [   22.305709]  ? lock_acquire+0xff/0x220
> > [   22.305709]  ? __kthread_parkme+0x45/0xd0
> > [   22.305709]  ? mark_held_locks+0x24/0x90
> > [   22.305709]  ? _raw_spin_unlock_irqrestore+0x43/0x50
> > [   22.305709]  ? lockdep_hardirqs_on+0x1a8/0x290
> > [   22.305709]  cryptomgr_test+0x36/0x60
> > [   22.305709]  kthread+0x1a8/0x200
> > [   22.305709]  ? crypto_acomp_scomp_free_ctx+0x70/0x70
> > [   22.305709]  ? kthread_create_on_node+0xd0/0xd0
> > [   22.305709]  ret_from_fork+0x3a/0x50
> > [   22.305709] Kernel Offset: 0x35000000 from 0xffffffff81000000
> > (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
> > [   22.305709] ---[ end Kernel panic - not syncing: alg: self-tests for
> > xts- aes-aesni (xts(aes)) failed in fips mode! ]---
> >=20
> > Ciao
> > Stephan



Ciao
Stephan