From 78a9cd7c58c1f75ee3a0a8fc6d396d195cb527d9 Mon Sep 17 00:00:00 2001
From: Daniel Pouzzner <douzzer@wolfssl.com>
Date: Wed, 16 Apr 2025 18:29:43 -0500
Subject: [PATCH] linuxkm/module_hooks.c: don't define FIPS_NO_WRAPPERS;

linuxkm/lkcapi_ecdh_glue.c: in km_ecdh_compute_shared_secret(), wrap wc_ecc_shared_secret() in PRIVATE_KEY_UNLOCK...PRIVATE_KEY_LOCK.
---
 linuxkm/lkcapi_ecdh_glue.c | 2 ++
 linuxkm/module_hooks.c     | 2 --
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/linuxkm/lkcapi_ecdh_glue.c b/linuxkm/lkcapi_ecdh_glue.c
index 8fce40744..933ca49de 100644
--- a/linuxkm/lkcapi_ecdh_glue.c
+++ b/linuxkm/lkcapi_ecdh_glue.c
@@ -523,8 +523,10 @@ static int km_ecdh_compute_shared_secret(struct kpp_request *req)
         goto ecdh_shared_secret_end;
     }
 
+    PRIVATE_KEY_UNLOCK();
     err = wc_ecc_shared_secret(ctx->key, ecc_pub, shared_secret,
                                &shared_secret_len);
+    PRIVATE_KEY_LOCK();
 
     if (unlikely(err || shared_secret_len != ctx->curve_len)) {
         #ifdef WOLFKM_DEBUG_ECDH
diff --git a/linuxkm/module_hooks.c b/linuxkm/module_hooks.c
index 25024eb3d..956ed2a7d 100644
--- a/linuxkm/module_hooks.c
+++ b/linuxkm/module_hooks.c
@@ -27,8 +27,6 @@
 #endif
 #endif
 
-#define FIPS_NO_WRAPPERS
-
 #define WOLFSSL_LINUXKM_NEED_LINUX_CURRENT
 
 #include <wolfssl/wolfcrypt/libwolfssl_sources.h>