wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 10:47:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

Remove fixed len constraint in FIPS mode

Browse Source
This commit is contained in:
kaleb-himes
2020-07-28 13:34:52 -06:00
parent ff12da30df
commit ffdc2eddf6
1 changed files with 5 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
IDE/GCC-ARM/Header/user_settings.h
View File

@ -171,16 +171,15 @@ extern "C" {
#undef ECC_TIMING_RESISTANT #undef ECC_TIMING_RESISTANT
#define ECC_TIMING_RESISTANT #define ECC_TIMING_RESISTANT
/* Enable cofactor support */
#ifdef HAVE_FIPS #ifdef HAVE_FIPS
#undef HAVE_ECC_CDH #undef HAVE_ECC_CDH
#define HAVE_ECC_CDH #define HAVE_ECC_CDH /* Enable cofactor support */
#endif
#undef NO_STRICT_ECDSA_LEN
#define NO_STRICT_ECDSA_LEN /* Do not force fixed len w/ FIPS */
/* Validate import */
#ifdef HAVE_FIPS
#undef WOLFSSL_VALIDATE_ECC_IMPORT #undef WOLFSSL_VALIDATE_ECC_IMPORT
#define WOLFSSL_VALIDATE_ECC_IMPORT #define WOLFSSL_VALIDATE_ECC_IMPORT /* Validate import */
#endif #endif
/* Compressed Key Support */ /* Compressed Key Support */