Disable XTS-384 as an allowed use in FIPS mode

kaleb-himes · kaleb-himes · commit 90630939937b · 2025-02-26T07:38:45.000-07:00
diff --git a/fips-check.sh b/fips-check.sh
@@ -240,9 +240,9 @@ linuxv5|linuxv5.2.1)
   )
   ;;
 v6.0.0)
-  WOLF_REPO_TAG='WCv6.0.0-RC3'
+  WOLF_REPO_TAG='WCv6.0.0-RC4'
   FIPS_REPO_TAG='WCv6.0.0-RC4'
-  ASM_PICKUPS_TAG='WCv6.0.0-RC3'
+  ASM_PICKUPS_TAG='WCv6.0.0-RC4'
   FIPS_OPTION='v6'
   FIPS_FILES=(
     "wolfcrypt/src/fips.c:${FIPS_REPO_TAG}"
diff --git a/wolfcrypt/src/aes.c b/wolfcrypt/src/aes.c
@@ -12818,7 +12818,12 @@ int wc_AesXtsSetKeyNoInit(XtsAes* aes, const byte* key, word32 len, int dir)
     }
 
     if ((len != (AES_128_KEY_SIZE*2)) &&
+#ifndef HAVE_FIPS
+        /* XTS-384 not allowed by FIPS and can not be treated like
+         * RSA-4096 bit keys back in the day, can not vendor affirm
+         * the use of 2 concatenated 192-bit keys (XTS-384) */
         (len != (AES_192_KEY_SIZE*2)) &&
+#endif
         (len != (AES_256_KEY_SIZE*2)))
     {
         WOLFSSL_MSG("Unsupported key size");

Original file line number	Diff line number	Diff line change
`@@ -12818,7 +12818,12 @@ int wc_AesXtsSetKeyNoInit(XtsAes* aes, const byte* key, word32 len, int dir)`
`12818`	`12818`	`}`
`12819`	`12819`
`12820`	`12820`	`if ((len != (AES_128_KEY_SIZE*2)) &&`
	`12821`	`+#ifndef HAVE_FIPS`
	`12822`	`+ /* XTS-384 not allowed by FIPS and can not be treated like`
	`12823`	`+ * RSA-4096 bit keys back in the day, can not vendor affirm`
	`12824`	`+ * the use of 2 concatenated 192-bit keys (XTS-384) */`
`12821`	`12825`	`(len != (AES_192_KEY_SIZE*2)) &&`
	`12826`	`+#endif`
`12822`	`12827`	`(len != (AES_256_KEY_SIZE*2)))`
`12823`	`12828`	`{`
`12824`	`12829`	`WOLFSSL_MSG("Unsupported key size");`