mirror of
https://github.com/wolfSSL/wolfssl.git
synced 2026-01-31 14:09:16 +01:00
c16127d9ab
- Remove FP_MAX_BITS and RSA_MAX_BITS definitions from rsyslog config. A user configuring wolfSSL for rsyslog support should set them as they see fit (i.e. based on the key sizes they need to support). - After testing with wolfSSL FIPS, I discovered that some functions were missing from the compatibility layer that rsyslog needs. Notably wolfSSL_DH_generate_key and wolfSSL_DH_set0_pqg. These were gated out of compilation based on HAVE_FIPS. However, they only need to be compiled out if WOLFSSL_DH_EXTRA is defined. This is because these functions call SetDhInternal, which calls wc_DhImportKeyPair if WOLFSSL_DH_EXTRA is defined. wc_DhImportKeyPair isn't available in the FIPS module's dh.c. So, these functions can exist in the FIPS build provided WOLFSSL_DH_EXTRA isn't defined. This commit accounts for this scenario.