Hi all, > On 21/12/21 4:18 pm, Petr Vorel wrote: > > Hi Nageswara, > > > On 21/12/21 8:07 am, Yael Tiomkin wrote: > > > > Test that encrypted keys can be instantiated using > > > > both user-provided decrypted data > > > > (https://lore.kernel.org/linux-integrity/20211213192030.125091-1-yaelt@xxxxxxxxxx/), > > > > or kernel-generated numbers. > > > > Signed-off-by: Yael Tiomkin <yaelt@xxxxxxxxxx> > > > Tested on ppc64le platform > > I suppose it also fails on ppc64le when run more iterations. > Tried with -i500, -i5000 and -i50000 also ... no failures were seen on > ppc64le architecture. > Summary: > passed 500 > failed 0 > Summary: > passed 5000 > failed 0 > Summary: > passed 50000 > failed 0 Interesting, thx for info. It's either arch specific or specific to openSUSE kernel on my laptop (~ 5.16.0-rc5) where I tested it. Testing on various VM it works well (including openSUSE with latest kernel stable). It also works on RPI 4 with openSUSE kernel. Also it fails on 2 VMs with fips enabled: Debian testing (immediately) and SLES 15-SP4 (after 63 iterations - the same number as 5.16.0-rc5 on my laptop): keyctl09.c:33: TBROK: Failed to instantiate encrypted key using payload decrypted data but on my laptop I don't use fips. Kind regards, Petr
