From 27e0df040fac8b5c8138b656fde218284626c957 Mon Sep 17 00:00:00 2001 From: Daniel Pouzzner Date: Wed, 4 Dec 2024 20:02:12 -0600 Subject: [PATCH] src/ssl_crypto.c: revert FIPS gate threshold in wolfSSL_AES_decrypt() changed in d85c108952 -- original value was correct, misdiagnosed by faulty test. --- src/ssl_crypto.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/ssl_crypto.c b/src/ssl_crypto.c index 6907822a6..f2ff78193 100644 --- a/src/ssl_crypto.c +++ b/src/ssl_crypto.c @@ -3041,7 +3041,7 @@ void wolfSSL_AES_decrypt(const unsigned char* input, unsigned char* output, } else #if !defined(HAVE_SELFTEST) && \ - (!defined(HAVE_FIPS) || (defined(FIPS_VERSION_GE) && FIPS_VERSION3_GE(5,2,1))) + (!defined(HAVE_FIPS) || (defined(FIPS_VERSION_GE) && FIPS_VERSION3_GE(5,3,0))) /* Decrypt a block with wolfCrypt AES. */ if (wc_AesDecryptDirect((Aes*)key, output, input) != 0) { WOLFSSL_MSG("wc_AesDecryptDirect failed");