[LTP] [PATCH v2] syscalls/keyctl09: test encrypted keys.

Petr Vorel pvorel@suse.cz
Wed Dec 22 10:10:28 CET 2021


Hi all,

> On 21/12/21 4:18 pm, Petr Vorel wrote:
> > Hi Nageswara,

> > > On 21/12/21 8:07 am, Yael Tiomkin wrote:
> > > > Test that encrypted keys can be instantiated using
> > > > both user-provided decrypted data
> > > > (https://lore.kernel.org/linux-integrity/20211213192030.125091-1-yaelt@google.com/),
> > > > or kernel-generated numbers.

> > > > Signed-off-by: Yael Tiomkin <yaelt@google.com>

> > > Tested on ppc64le platform

> > I suppose it also fails on ppc64le when run more iterations.


> Tried with -i500, -i5000 and -i50000 also ... no failures were seen on
> ppc64le architecture.

> Summary:
> passed   500
> failed   0

> Summary:
> passed   5000
> failed   0

> Summary:
> passed   50000
> failed   0

Interesting, thx for info. It's either arch specific or specific to openSUSE
kernel on my laptop (~ 5.16.0-rc5) where I tested it. Testing on
various VM it works well (including openSUSE with latest kernel stable). It also
works on RPI 4 with openSUSE kernel.

Also it fails on 2 VMs with fips enabled: Debian testing (immediately) and SLES
15-SP4 (after 63 iterations - the same number as 5.16.0-rc5 on my laptop):
keyctl09.c:33: TBROK: Failed to instantiate encrypted key using payload decrypted data

but on my laptop I don't use fips.

Kind regards,
Petr


More information about the ltp mailing list