Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp861105pxj;
        Fri, 21 May 2021 00:25:04 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzF7MiTnrey5zTHxvLoQ0OBFoYgUrVxNTFQApP+g3gaZWh7Lv+tBxi6c+OQZW1ZV7yb+Ntr
X-Received: by 2002:aa7:d413:: with SMTP id z19mr9643768edq.37.1621581903781;
        Fri, 21 May 2021 00:25:03 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1621581903; cv=pass;
        d=google.com; s=arc-20160816;
        b=AnF7I2GLhH7sKjkvFA8aQErvGieqorvzQwpb6ZzWy9uHbxCoQ89zATPs4pwbVPBKkq
         OXMgaPA9FJ+gjgCfYhsbLQdeyWWAJ6DmwWCggdSK8hpUY4BsxruVFQd6ZZGwXg/TrqdM
         iCbCx6iutpbQxhMYhhr/nIbPBw4Jbf6gk2ZBA5blHQwH5Ejtm4s4pqfEvHs9N+p1o5Uo
         WIPmXRxQyVAb7vWki6//2HgKepI3TAU+XC8Mz39Ix3vYLnIAAHK+mQ4l2XScmc2mqggC
         nl4MSyQyIyubQo1pFWYUafarl2EEd4Bu/Ftr/xSAN1zsGUL8Q7w6332VzJMvp2BRetAg
         QsRg==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :message-id:date:subject:cc:to:from:dkim-signature;
        bh=cmA0CcMD/U9YqBKObfXooA2cVKegWzGYs4H8toqG9Vw=;
        b=JaqEm+5cxj4HO17S+R4iIOlAptH/Ni9Fqqk559VE/BoEfjzg9lN+oC3Yc2kXhyWC4X
         uxpWPP8vOWnROiAwad6CcxfVyct+ftttBv0N63LKtBrmHa0dOz4LvfmkLuT8U3bvhppJ
         F5z/UoJYWG0q0hED4H9n41yWTuV/Tna4SXWfetz67AEztpyqCcxBarexhVQd+gyQWd8d
         onbejErAYySLlgpSA0R9ZPfSPKwda/c5XPXQluiOVHXUM8DgGvgrevNJJrWOdGBYZcxu
         FPBIRja1WSt0EDHsI5cf1a410NA77xiAlBsWTR/O/H3om+OxDfNUckPXR2H4upmsQOoH
         y22A==
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=cTBTeCtT;
       arc=pass (i=1);
       spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Return-Path: <linux-crypto-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id c14si5101780edr.15.2021.05.21.00.24.28;
        Fri, 21 May 2021 00:25:03 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=cTBTeCtT;
       arc=pass (i=1);
       spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S233380AbhETTih (ORCPT <rfc822;kestrelseventyfour@gmail.com>
        + 99 others); Thu, 20 May 2021 15:38:37 -0400
Received: from mo4-p00-ob.smtp.rzone.de ([81.169.146.218]:21429 "EHLO
        mo4-p00-ob.smtp.rzone.de" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232281AbhETTig (ORCPT
        <rfc822;linux-crypto@vger.kernel.org>);
        Thu, 20 May 2021 15:38:36 -0400
X-Greylist: delayed 350 seconds by postgrey-1.27 at vger.kernel.org; Thu, 20 May 2021 15:38:36 EDT
ARC-Seal: i=1; a=rsa-sha256; t=1621539073; cv=none;
    d=strato.com; s=strato-dkim-0002;
    b=OE65IJFw7vqwMzx55fnN8ooaONM55v+ilUf5u1TKvNKhGI4f6F4MLxCukD4Zauti3R
    Z2aiOEK//JQYZp3DPtHUNPU2LtpA9rzH3rX1Zj01zQxdRwYVQpxr3wQVq9DcxXSJil2Y
    D3fWlDR9KGG20TKUQxefeyt7VyfDHexPJgXVrX3NDTvg/FFE3rz0khaPHOQfTMNuF5vX
    TVQRypkPCzIT8toJhY9MigvIwYuQirWaVAhpGQ7KrjWwW+Ge+qT5kWy4V+/Cnl5g/wgr
    SwpTApcRbEvepkOH7n62A/ISSMbUE+HKH4FuZcuK5FptC+s5AxjGesdsX8RM+a/BnmW8
    45rA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; t=1621539073;
    s=strato-dkim-0002; d=strato.com;
    h=Message-ID:Date:Subject:Cc:To:From:Cc:Date:From:Subject:Sender;
    bh=cmA0CcMD/U9YqBKObfXooA2cVKegWzGYs4H8toqG9Vw=;
    b=Ap3VPwy1QZPaAvEBBHtauiM0cmt8+s3vAdh/pjBubyfObCybrsx0vgb/nbeJb8TeSK
    3amR+mB1AlRaETB0nNTQ0OXScNWRRmGDx0BpFk/HLwzFdOJrnGvyS2vKMvAxm3HzRcDd
    Xco/jZQHcFMqQyCmEZmdoTf0HPniOm+HbD1sQECYjwRMxPB1asVYWnS2AW8i2pfl5oF1
    d9A3XaaHT7gKbtoef3CdXKgCWDCdlvVEjxmQ4qP8mkciJ/o2RrzYb9NuVTA2zUB+6FyL
    xyv4a0S+4+GzfWQyOJD77o7Er8zUBBM50XTWS9w1mY0Nu9t446pxvcuX8a0/gWey3nWp
    VCnQ==
ARC-Authentication-Results: i=1; strato.com;
    dkim=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1621539073;
    s=strato-dkim-0002; d=chronox.de;
    h=Message-ID:Date:Subject:Cc:To:From:Cc:Date:From:Subject:Sender;
    bh=cmA0CcMD/U9YqBKObfXooA2cVKegWzGYs4H8toqG9Vw=;
    b=cTBTeCtT22K1UP19QtfoKrp1C9osH8zcPSQNpANrol0kzAqb0HW0yRMOmqpPFTjdUr
    hUwNU3OXu+wOliyVlcNopt5QmCcAcCHJr1ZH6Mr6JPzkVBAqrUqM5f/mHx5p3hTa4zrr
    lqLuYlKbtkeJC6elPjy9WqfcNnFuWnO3ODfuJfAjz4qRmmzOyOCKapyyf4MAeQTRSChk
    rFqLpm38iyxZ18BHyUsiSYY0v7WhMTqxmPy8/401PlT9sBS8JbYhtRAtBcIK2jy1xT7m
    vCViHZCn/JsS5ImAwvYHduHSdK09SbsZxVETBohxGJVh3e2TIWvzAKR/mCZEYU239xJa
    e6tA==
Authentication-Results: strato.com;
    dkim=none
X-RZG-AUTH: ":P2ERcEykfu11Y98lp/T7+hdri+uKZK8TKWEqNyiHySGSa9k9xmwdNnzGHXPbIvScKz23"
X-RZG-CLASS-ID: mo00
Received: from positron.chronox.de
    by smtp.strato.de (RZmta 47.26.1 DYNA|AUTH)
    with ESMTPSA id j02838x4KJVC09l
        (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256 bits))
        (Client did not present a certificate);
    Thu, 20 May 2021 21:31:12 +0200 (CEST)
From:   Stephan =?ISO-8859-1?Q?M=FCller?= <smueller@chronox.de>
To:     linux-crypto@vger.kernel.org
Cc:     herbert@gondor.apana.org.au
Subject: [PATCH] crypto: DRBG - switch to HMAC SHA512 DRBG as default DRBG
Date:   Thu, 20 May 2021 21:31:11 +0200
Message-ID: <3171520.o5pSzXOnS6@positron.chronox.de>
MIME-Version: 1.0
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain; charset="us-ascii"
Precedence: bulk
List-ID: <linux-crypto.vger.kernel.org>
X-Mailing-List: linux-crypto@vger.kernel.org

The default DRBG is the one that has the highest priority. The priority
is defined based on the order of the list drbg_cores[] where the highest
priority is given to the last entry by drbg_fill_array.

With this patch the default DRBG is switched from HMAC SHA256 to HMAC
SHA512 to support compliance with SP800-90B and SP800-90C (current
draft).

The user of the crypto API is completely unaffected by the change.

Signed-off-by: Stephan Mueller <smueller@chronox.de>
---
 crypto/drbg.c | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/crypto/drbg.c b/crypto/drbg.c
index 1b4587e0ddad..ea85d4a0fe9e 100644
--- a/crypto/drbg.c
+++ b/crypto/drbg.c
@@ -176,18 +176,18 @@ static const struct drbg_core drbg_cores[] = {
 		.blocklen_bytes = 48,
 		.cra_name = "hmac_sha384",
 		.backend_cra_name = "hmac(sha384)",
-	}, {
-		.flags = DRBG_HMAC | DRBG_STRENGTH256,
-		.statelen = 64, /* block length of cipher */
-		.blocklen_bytes = 64,
-		.cra_name = "hmac_sha512",
-		.backend_cra_name = "hmac(sha512)",
 	}, {
 		.flags = DRBG_HMAC | DRBG_STRENGTH256,
 		.statelen = 32, /* block length of cipher */
 		.blocklen_bytes = 32,
 		.cra_name = "hmac_sha256",
 		.backend_cra_name = "hmac(sha256)",
+	}, {
+		.flags = DRBG_HMAC | DRBG_STRENGTH256,
+		.statelen = 64, /* block length of cipher */
+		.blocklen_bytes = 64,
+		.cra_name = "hmac_sha512",
+		.backend_cra_name = "hmac(sha512)",
 	},
 #endif /* CONFIG_CRYPTO_DRBG_HMAC */
 };
-- 
2.31.1