"RSA-keyGen-FIPS186-5: General exception. Contact service provider."

[erichanson7]

environment DEMO

testSessionId Unable to create a new session

vsId Not getting this far

Algorithm registration { "isSample": false, "algorithms": [ { "algorithm": "RSA", "mode": "keyGen", "revision": "FIPS186-5", "prereqVals": [ { "algorithm": "DRBG", "valValue": "same" }, { "algorithm": "SHA", "valValue": "same" } ], "infoGeneratedByServer": false, "pubExpMode": "fixed", "fixedPubExp": "010001", "keyFormat": "standard", "capabilities": [ { "randPQ": "probable", "properties": [ { "modulo": 2048, "hashAlg": [ "SHA2-224" ], "pMod8": 1, "qMod8": 1 } ] }, { "randPQ": "probable", "properties": [ { "modulo": 2048, "primeTest": [ "2pow100" ], "pMod8": 0, "qMod8": 3 } ] } ] } ] }

Endpoint in which the error is experienced

Expected behavior Would expect that the above would download/return request vectors.

Additional context Add any other context about the problem here. If you change the first instance of:

        "randPQ": "probable",

to:

           "randPQ": "provable",

The correct behavior is observed.

[jbrock24]

Hi @erichanson7 , thank you for bringing this to our attention. The error you are getting is:

Error NIST.CVP.ACVTS.Libraries.Generation.Core.Generator 4 System.ArgumentNullException: Value cannot be null. -- for the primeTest field.

A primeTest is required when a randPQ of probable is used as noted here in section 7.5.1 of the RSA documentation. We are not erroring properly here checking for null before accessing members, and I have fixed this in the code. It will go out with the next incremental release. We'll reply here when it's available.

We appreciate the assistance in making the ACVP better!

[erichanson7]

@jbrock24 Thank You Joel for the quick response! That worked!

[livebe01]

The fix for this is on Demo in release v1.1.0.41.

[livebe01]

As of 11/12/25, the fix for this is on Prod in release v1.1.0.41.