[gnutls-devel] GnuTLS | Draft: Add self-test code inside a FIPS context (!1607)

[Read-only notification of GnuTLS library development activities]

Richard Costa created a merge request: https://gitlab.com/gnutls/gnutls/-/merge_requests/1607

Project:Branches: richard.costa/gnutls:master to gnutls/gnutls:master
Author:   Richard Costa




Commit 036fb360 adds a self-test that executes outside of FIPS context. This messes with the FIPS FSM if executed just after a crypto operation which depends on the FIPS FSM. So a new context was added so the self tests can execute safely. In case one of the self tests fail, then the whole lib is moved to an error state, so FIPS FSM doesn't matter anymore.

## Checklist
 * [x] Commits have `Signed-off-by:` with name/author being identical to the commit author
 * [x] Code modified for feature
 * [x] Test suite updated with functionality tests
 * [ ] Test suite updated with negative tests
 * [ ] Documentation updated / NEWS entry present (for non-trivial changes)
 * [ ] CI timeout is 2h or higher (see Settings/CICD/General pipelines/Timeout)

## Reviewer's checklist:
 * [ ] Any issues marked for closing are addressed
 * [ ] There is a test suite reasonably covering new functionality or modifications
 * [ ] Function naming, parameters, return values, types, etc., are consistent and according to `CONTRIBUTION.md`
 * [ ] This feature/change has adequate documentation added
 * [ ] No obvious mistakes in the code

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1607
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220630/fce9e3bb/attachment.html>