crypto: drbg - Fix the fips_enabled priority boost

When fips_enabled=1, it seems to have been intended for one of the algorithms defined in crypto/drbg.c to be the highest priority "stdrng" algorithm, so that it is what is used by "stdrng" users. However, the code only boosts the priority to 400, which is less than the priority 500 used in drivers/crypto/caam/caamprng.c. Thus, the CAAM RNG could be used instead. Fix this by boosting the priority by 2000 instead of 200. Fixes: 541af946fe13 ("crypto: drbg - SP800-90A Deterministic Random Bit Generator") Cc: stable@vger.kernel.org Signed-off-by: Eric Biggers <ebiggers@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
author: Eric Biggers <ebiggers@kernel.org> 2026-04-19 23:33:49 -0700
committer: Herbert Xu <herbert@gondor.apana.org.au> 2026-05-07 16:09:59 +0800
commit: a8a1f93080efc83a9ff8452954429ae379e9e614 (patch)
tree: ab6c90b69622fa994c33cf61667075dc74e97cf1 /crypto
parent: 6f49f00c981bbb9ef602966f19bfdbef46b681d2 (diff)
download: linux-next-history-a8a1f93080efc83a9ff8452954429ae379e9e614.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/drbg.c b/crypto/drbg.c
index f23b431bd4902..e3065fb9541b2 100644
--- a/crypto/drbg.c
+++ b/crypto/drbg.c
@@ -1832,7 +1832,7 @@ static inline void __init drbg_fill_array(struct rng_alg *alg,
 	 * it is selected.
 	 */
 	if (fips_enabled)
-		alg->base.cra_priority += 200;
+		alg->base.cra_priority += 2000;
 
 	alg->base.cra_ctxsize 	= sizeof(struct drbg_state);
 	alg->base.cra_module	= THIS_MODULE;
author	Eric Biggers <ebiggers@kernel.org>	2026-04-19 23:33:49 -0700
committer	Herbert Xu <herbert@gondor.apana.org.au>	2026-05-07 16:09:59 +0800
commit	a8a1f93080efc83a9ff8452954429ae379e9e614 (patch)
tree	ab6c90b69622fa994c33cf61667075dc74e97cf1 /crypto
parent	6f49f00c981bbb9ef602966f19bfdbef46b681d2 (diff)
download	linux-next-history-a8a1f93080efc83a9ff8452954429ae379e9e614.tar.gz