imx6qsabresd: imx-4.1.15-1.0.0_ga:CAAM test algorithms fails

キャンセル
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 

imx6qsabresd: imx-4.1.15-1.0.0_ga:CAAM test algorithms fails

ソリューションへジャンプ
1,309件の閲覧回数
jdepedro
Contributor IV

Hi, I reproduce the following errors:

caam 2100000.caam: Entropy delay = 3200
caam 2100000.caam: Instantiated RNG4 SH0
caam 2100000.caam: Instantiated RNG4 SH1
caam 2100000.caam: device ID = 0x0a16010000000000 (Era -524)
caam 2100000.caam: job rings = 2, qi = 0
alg: No test for authencesn(hmac(md5),ecb(cipher_null)) (authencesn-hmac-md5-ecb-cipher_null-caam)
alg: No test for authencesn(hmac(sha1),ecb(cipher_null)) (authencesn-hmac-sha1-ecb-cipher_null-caam)
alg: No test for authenc(hmac(sha224),ecb(cipher_null)) (authenc-hmac-sha224-ecb-cipher_null-caam)
alg: No test for authencesn(hmac(sha224),ecb(cipher_null)) (authencesn-hmac-sha224-ecb-cipher_null-caam)
alg: No test for authenc(hmac(sha256),ecb(cipher_null)) (authenc-hmac-sha256-ecb-cipher_null-caam)
alg: No test for authencesn(hmac(sha256),ecb(cipher_null)) (authencesn-hmac-sha256-ecb-cipher_null-caam)
alg: No test for authenc(hmac(md5),cbc(aes)) (authenc-hmac-md5-cbc-aes-caam)
alg: No test for authencesn(hmac(md5),cbc(aes)) (authencesn-hmac-md5-cbc-aes-caam)
alg: No test for authencesn(hmac(sha1),cbc(aes)) (authencesn-hmac-sha1-cbc-aes-caam)
alg: No test for authenc(hmac(sha224),cbc(aes)) (authenc-hmac-sha224-cbc-aes-caam)
alg: No test for authencesn(hmac(sha224),cbc(aes)) (authencesn-hmac-sha224-cbc-aes-caam)
alg: No test for authencesn(hmac(sha256),cbc(aes)) (authencesn-hmac-sha256-cbc-aes-caam)
alg: No test for authenc(hmac(md5),cbc(des3_ede)) (authenc-hmac-md5-cbc-des3_ede-caam)
alg: No test for authencesn(hmac(md5),cbc(des3_ede)) (authencesn-hmac-md5-cbc-des3_ede-caam)
alg: No test for authencesn(hmac(sha1),cbc(des3_ede)) (authencesn-hmac-sha1-cbc-des3_ede-caam)
alg: No test for authencesn(hmac(sha224),cbc(des3_ede)) (authencesn-hmac-sha224-cbc-des3_ede-caam)
alg: No test for authencesn(hmac(sha256),cbc(des3_ede)) (authencesn-hmac-sha256-cbc-des3_ede-caam)
alg: No test for authenc(hmac(md5),cbc(des)) (authenc-hmac-md5-cbc-des-caam)
alg: No test for authencesn(hmac(md5),cbc(des)) (authencesn-hmac-md5-cbc-des-caam)
alg: No test for authencesn(hmac(sha1),cbc(des)) (authencesn-hmac-sha1-cbc-des-caam)
alg: No test for authencesn(hmac(sha224),cbc(des)) (authencesn-hmac-sha224-cbc-des-caam)
alg: No test for authencesn(hmac(sha256),cbc(des)) (authencesn-hmac-sha256-cbc-des-caam)
alg: No test for authenc(hmac(md5),rfc3686(ctr(aes))) (authenc-hmac-md5-rfc3686-ctr-aes-caam)
alg: No test for authencesn(hmac(md5),rfc3686(ctr(aes))) (authencesn-hmac-md5-rfc3686-ctr-aes-caam)
alg: No test for authenc(hmac(sha1),rfc3686(ctr(aes))) (authenc-hmac-sha1-rfc3686-ctr-aes-caam)
alg: No test for authencesn(hmac(sha1),rfc3686(ctr(aes))) (authencesn-hmac-sha1-rfc3686-ctr-aes-caam)
alg: No test for authenc(hmac(sha224),rfc3686(ctr(aes))) (authenc-hmac-sha224-rfc3686-ctr-aes-caam)
alg: No test for authencesn(hmac(sha224),rfc3686(ctr(aes))) (authencesn-hmac-sha224-rfc3686-ctr-aes-caam)
alg: No test for authenc(hmac(sha256),rfc3686(ctr(aes))) (authenc-hmac-sha256-rfc3686-ctr-aes-caam)
alg: No test for authencesn(hmac(sha256),rfc3686(ctr(aes))) (authencesn-hmac-sha256-rfc3686-ctr-aes-caam)
caam_jr 2101000.jr0: 20000b11: CCB: desc idx 11: AES: Mode error.
alg: aead: encryption failed on test 1 for rfc4106-gcm-aes-caam: ret=-536873745
alg: No test for rfc4543(gcm(aes)) (rfc4543-gcm-aes-caam)
caam_jr 2101000.jr0: 20000c11: CCB: desc idx 12: AES: Mode error.
alg: aead: encryption failed on test 1 for gcm-aes-caam: ret=-536874001
caam algorithms registered in /proc/crypto
caam_jr 2101000.jr0: registering rng-caam

1) Is there a fix for those algorithms? rfc4106-gcm-aes-caam,, gcm-aes-caam

2) Can they be disabled?

ラベル(1)
タグ(2)
1 解決策
864件の閲覧回数
Yuri
NXP Employee
NXP Employee

AES GSM is not mentioned in the Security Reference Manual ; this means no support.

~Yuri.

元の投稿で解決策を見る

3 返答(返信)
864件の閲覧回数
Yuri
NXP Employee
NXP Employee

Hello,

  AES GSM isn't supported in HW.

Have a great day,
Yuri

-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------

0 件の賞賛
返信
864件の閲覧回数
jdepedro
Contributor IV

Hi Yuri,

thanks for your quick answer.

Is this limitation documented somewhere in the Security Reference Manual? 

Is it related to some CAAM block hardware version that I can check in some register?

Thanks.

0 件の賞賛
返信
865件の閲覧回数
Yuri
NXP Employee
NXP Employee

AES GSM is not mentioned in the Security Reference Manual ; this means no support.

~Yuri.