Public bug reported:
There are a number of tests that can be carried out to verify the True
Random Number Generator (TRNG) block in PKA HW. Perform these tests
before using TRNG. These tests check if TRNG is functioning as expected.
Disable TRNG if any of these tests fail.
SRU Justification:
[Impact]
* TRNG block in PKA HW may not be functioning as expected, without carrying out
tests there is no way to verify its functionality. These tests are carried out
early in the boot stage during ATF (ARM Trusted Firmware), carry out these
tests again while loading PKA linux driver.
[Fix]
* Add tests to verify TRNG "pka: Test TRNG block before making it available."
[Test Case]
* Derive random bytes from TRNG in PKA HW via OpenSSL using 'pka' engine.
Ex:# openssl rand -engine pka 512.
[Regression Potential]
* If the any of the tests fail then TRNG will be disabled. Hence random bytes
cannot be derived from PKA HW.
** Affects: linux-bluefield (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1925514
Title:
Add tests to check TRNG block in PKA HW
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-bluefield/+bug/1925514/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
