Received: by 2002:a05:6358:11c7:b0:104:8066:f915 with SMTP id i7csp4021455rwl;
        Tue, 28 Mar 2023 01:09:50 -0700 (PDT)
X-Google-Smtp-Source: AKy350aqBsp9lEhjAqhmfSVDL0M9nXfgtiyCDe7QVuhgSJNHquU+xDUt0uYaW5eGAiN9fiEYPmFa
X-Received: by 2002:a05:6402:268e:b0:502:ffd:74a0 with SMTP id w14-20020a056402268e00b005020ffd74a0mr16911224edd.2.1679990989955;
        Tue, 28 Mar 2023 01:09:49 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1679990989; cv=pass;
        d=google.com; s=arc-20160816;
        b=hOD873xsxLvtjFPqUED92DALn9mGv4BwLoqJbniSNAAVOjVM4Haprdzk9fex0Jk4hX
         jZz4BfUHtQdPkpNLbn2TMGzkRfbIPzOIqrehDjkJDyePls8THG7neIPnYdkgs5pyiB02
         jvbcop+THkC84uPfaPfdeJ+XtDPL4b9B+GjJpmJL1SzXLGv+Huqh4H27YcX+5yBp/XYh
         1UW2EasOS3/hXHhPACee4vTOQYykl/s8lppQGOmpBT2CKzrjTFkFmU3NeG4L/U62TXlm
         B15v8/jNPEe0CU9NGx2lmVUu5a6dWp0ljgGq6AMKmCFbx6ENEdrnMW7LOT9AV03psG4H
         rNiw==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:to:from
         :dkim-signature;
        bh=ZVr+GBseoUw7mQIsJmBJ7iRh/RojZKBlyaxOMmlUPCE=;
        b=CVvzXhSmMw9wT1sPUAky+kfLTYxkgweK36TtzcmPaPcLt9OsS9jxsgVviS8tjXfCWv
         fwmI8CTK1egZPvCk39yhJUHX5cqxLClLRQvS6FvJGNV+PBPpfFRR++CSF+03fE0GqmJA
         V2HgiMRtAfcdctEiCmzCnIIyW5Pvg/sh+7A3HboLuqCA2xWxtXhDJXK6LQXf1L9SzFW3
         to7C95yNeHpCWPs5dp7/2m35t2IV4yS2INshRYvjKrusZSC6foy+i72M4MKTQ39NqcZj
         Vm6+DmzQtVY34pUEZ0RDunbTP30bd7cidiqWdNTZPoceD2De8/qIGw0gmlzBgh8UOek/
         sq3g==
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=PcxBA7o3;
       arc=pass (i=1);
       spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Return-Path: <linux-crypto-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id n20-20020a05640204d400b005021f0d1410si11143252edw.32.2023.03.28.01.09.00;
        Tue, 28 Mar 2023 01:09:49 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=PcxBA7o3;
       arc=pass (i=1);
       spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229728AbjC1IEa (ORCPT <rfc822;proase2022@gmail.com> + 99 others);
        Tue, 28 Mar 2023 04:04:30 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:56044 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229501AbjC1IE3 (ORCPT
        <rfc822;linux-crypto@vger.kernel.org>);
        Tue, 28 Mar 2023 04:04:29 -0400
Received: from mo4-p00-ob.smtp.rzone.de (mo4-p00-ob.smtp.rzone.de [81.169.146.162])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 28B9E12F
        for <linux-crypto@vger.kernel.org>; Tue, 28 Mar 2023 01:04:27 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1679990661; cv=none;
    d=strato.com; s=strato-dkim-0002;
    b=sMZ6QzO1ZJleEDtBN5taOVA/cep4+5/d0B6s2oHMTu5efEyamDl5UVfPLblR6Mk/fg
    r9CvvQiuQe6AG+63zFHfnc2jHrRlnGQ4Ccvv86FJIv5MRcwKU4VTayW/YOBqNJOEcFsL
    x3h/UmUbn2xjB0ljiOGrC8+fCmcohmTpMe/tlBdm3dMi+VuiaZVJxhVMqcbTrJz7xOyc
    LdakVPHTHQwVjcRgJccQe3e2Pc3yGQns2goz2oEGnKg6xMYVDENDLbI9gAsFD3xJWvpK
    AmORfSXuCdYHk7K0Unlpb5N0VvC3SF+8+G/9zo5pVhvLz2n2UiD+SVQQGYWS4cFqq6gD
    4jNA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; t=1679990661;
    s=strato-dkim-0002; d=strato.com;
    h=References:In-Reply-To:Message-ID:Date:Subject:To:From:Cc:Date:From:
    Subject:Sender;
    bh=ZVr+GBseoUw7mQIsJmBJ7iRh/RojZKBlyaxOMmlUPCE=;
    b=YOHNBkBw8Pbascq3Ayi7XwBBy9F5wHzAduN+BzLgSoowCdc0MT4paLYqaT1KWXUBtO
    gWJwkTjTUABuydxHuN6uVprKuOvKoe4f8DSQY8SWnDGmsW4TYW0dqlcYssAVl7zhI9Zb
    VODXXb+BhU4kN8MsYvmo7PzjBA8NH2GRfIXs1mA/xkt25qZ0gBQJB44R2kzCmo/ELObe
    emDzTRsOGoeBLX2c4zhqlhYGWngMafAYVLZmekDU4XT30Sef9s/uoO7wy3Q5vMQr4BTC
    4u9cEH5u/xbwq/u+NmSUT9OMUXbHylBNw3iBDJ/DdcQCY+lsQjCpCDKNERCtKrM0xza3
    HRhg==
ARC-Authentication-Results: i=1; strato.com;
    arc=none;
    dkim=none
X-RZG-CLASS-ID: mo00
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1679990661;
    s=strato-dkim-0002; d=chronox.de;
    h=References:In-Reply-To:Message-ID:Date:Subject:To:From:Cc:Date:From:
    Subject:Sender;
    bh=ZVr+GBseoUw7mQIsJmBJ7iRh/RojZKBlyaxOMmlUPCE=;
    b=PcxBA7o3mu3XEap6mVwpZ4pkm5wn75ge0J61hEFtRooL5v0hLo2BYD5r1VeZqYNEk5
    uuDESLQx6+QLGRWet9as9z2epVAzUOUyoRFSyZM0sBxLA2jZTBKjMH1DMJz/hlh+hkIt
    jq/L8JeQwVcGQz6u84mTxFluUZSxOGKxmk+nk13M95yFaUF6mnd/LrEhSuxMss40lUhS
    BCxRBR5GzlXRRr7gfhjotYt9Wu8Y1SOyv+493gh7MIg4lgslQlLOScSRJm1RDl2BSs9d
    w6G8GJQ1rEIhCMUMbMgeux0Id1DSMXWqo24Yz0q0Bx+aQfNTTmZQE5KMIjPKTGtG8r+w
    kadw==
X-RZG-AUTH: ":P2ERcEykfu11Y98lp/T7+hdri+uKZK8TKWEqNyiHySGSa9k9y2gdNk2TvDz1d0+/iw=="
Received: from tauon.chronox.de
    by smtp.strato.de (RZmta 49.3.1 AUTH)
    with ESMTPSA id u24edez2S84LphG
        (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256 bits))
        (Client did not present a certificate);
    Tue, 28 Mar 2023 10:04:21 +0200 (CEST)
From:   Stephan Mueller <smueller@chronox.de>
To:     Linux Crypto Mailing List <linux-crypto@vger.kernel.org>,
        Herbert Xu <herbert@gondor.apana.org.au>
Subject: Re: [PATCH] crypto: drbg - Only fail when jent is unavailable in FIPS mode
Date:   Tue, 28 Mar 2023 10:04:20 +0200
Message-ID: <1802483.TS1nA93jg2@tauon.chronox.de>
In-Reply-To: <ZCJgez22L30w5B0L@gondor.apana.org.au>
References: <ZCJgez22L30w5B0L@gondor.apana.org.au>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="iso-8859-1"
X-Spam-Status: No, score=-0.2 required=5.0 tests=DKIM_SIGNED,DKIM_VALID,
        DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H3,
        RCVD_IN_MSPIKE_WL,SPF_HELO_PASS,SPF_NONE autolearn=unavailable
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-crypto.vger.kernel.org>
X-Mailing-List: linux-crypto@vger.kernel.org

Am Dienstag, 28. M=E4rz 2023, 05:35:23 CEST schrieb Herbert Xu:

Hi Herbert,

> When jent initialisation fails for any reason other than ENOENT,
> the entire drbg fails to initialise, even when we're not in FIPS
> mode.  This is wrong because we can still use the kernel RNG when
> we're not in FIPS mode.
>=20
> Change it so that it only fails when we are in FIPS mode.

Reviewed-by: Stephan Mueller <smueller@chronox.de>

Ciao
Stephan