From 92569c25bd72e2db6771762fe9606d46fbd8d8ed Mon Sep 17 00:00:00 2001
From: Shizuka Ishikiriyama <shizuka@Shizukas-MacBook-Pro-2.local>
Date: Tue, 27 May 2025 14:02:34 -0700
Subject: [PATCH] Created FIPS FAQ

---
 .DS_Store                         | Bin 0 -> 14340 bytes
 wolfBoot/.DS_Store                | Bin 0 -> 6148 bytes
 wolfCLU/.DS_Store                 | Bin 0 -> 6148 bytes
 wolfCrypt-JNI/.DS_Store           | Bin 0 -> 6148 bytes
 wolfEngine/.DS_Store              | Bin 0 -> 6148 bytes
 wolfHSM/.DS_Store                 | Bin 0 -> 6148 bytes
 wolfMQTT/.DS_Store                | Bin 0 -> 6148 bytes
 wolfProvider/.DS_Store            | Bin 0 -> 6148 bytes
 wolfSSH/.DS_Store                 | Bin 0 -> 6148 bytes
 wolfSSL-FAQ/.DS_Store             | Bin 0 -> 6148 bytes
 wolfSSL-FIPS-FAQ/Makefile         |  22 ++
 wolfSSL-FIPS-FAQ/header.txt       |  21 ++
 wolfSSL-FIPS-FAQ/mkdocs.yml       |  25 +++
 wolfSSL-FIPS-FAQ/src/section01.md |  14 ++
 wolfSSL-FIPS-FAQ/src/section02.md | 323 ++++++++++++++++++++++++++++++
 wolfSSL-FIPS-Ready/.DS_Store      | Bin 0 -> 6148 bytes
 wolfSSL-JNI/.DS_Store             | Bin 0 -> 6148 bytes
 wolfSSL-Porting/.DS_Store         | Bin 0 -> 6148 bytes
 wolfSSL-Tuning/.DS_Store          | Bin 0 -> 6148 bytes
 wolfSSL/.DS_Store                 | Bin 0 -> 6148 bytes
 wolfSentry/.DS_Store              | Bin 0 -> 6148 bytes
 wolfTPM/.DS_Store                 | Bin 0 -> 6148 bytes
 22 files changed, 405 insertions(+)
 create mode 100644 .DS_Store
 create mode 100644 wolfBoot/.DS_Store
 create mode 100644 wolfCLU/.DS_Store
 create mode 100644 wolfCrypt-JNI/.DS_Store
 create mode 100644 wolfEngine/.DS_Store
 create mode 100644 wolfHSM/.DS_Store
 create mode 100644 wolfMQTT/.DS_Store
 create mode 100644 wolfProvider/.DS_Store
 create mode 100644 wolfSSH/.DS_Store
 create mode 100644 wolfSSL-FAQ/.DS_Store
 create mode 100644 wolfSSL-FIPS-FAQ/Makefile
 create mode 100644 wolfSSL-FIPS-FAQ/header.txt
 create mode 100644 wolfSSL-FIPS-FAQ/mkdocs.yml
 create mode 100644 wolfSSL-FIPS-FAQ/src/section01.md
 create mode 100644 wolfSSL-FIPS-FAQ/src/section02.md
 create mode 100644 wolfSSL-FIPS-Ready/.DS_Store
 create mode 100644 wolfSSL-JNI/.DS_Store
 create mode 100644 wolfSSL-Porting/.DS_Store
 create mode 100644 wolfSSL-Tuning/.DS_Store
 create mode 100644 wolfSSL/.DS_Store
 create mode 100644 wolfSentry/.DS_Store
 create mode 100644 wolfTPM/.DS_Store

diff --git a/.DS_Store b/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..4ae1fac011a5406686adc82b9e17e65bb9e8f194
GIT binary patch
literal 14340
zcmeHNO>7%g5T147#A)+m5Pym&GUCFaNn@&36-da<57bo(X`RvoMQt3L#?<ykiPNZx
zigJMi6sXF9TPZ3?9FX9^2@$E{0NmOhhy)jU-~<OMAr384%Qw6B?#!;&b`JD_-bTA`
zvpe(NeBYb*cINpJku|<jNE3|_Q35BI$$nhkCQ5NB4t~#P=;*=|3+FOU+$V|3^g2yZ
zl}=G9BprSb!z0%3#<`7F$yWMRDpu^mWWH?Y@jh`jpZw_CKfmA4_t)<IwSdwbh5^HX
zVZbn87%&WModN##;z(?FOLH|07zPXj9s@i-q;PVXsh8_+=}aBCa0t)uIfQo(+#?Tg
zo~7z#re3bQrK1WRM-`>3YSmK=%T>qo6pN$G)XR0Zbk)gn)yb;2Y}GRq%V`~YDMy^F
zj9Z$kVZbmDW?%x3n&#e%3+ddvU0HNg;y1bI^>XwBl%qr0vOQnV&N1j>ryz0Zo^!Bp
zP`Z3d)Yl)s6qcyilU}xeZOqH|1Fgz6foLgZ{eWXn!n6Jm9i~~D4cPw^q@?{Jd4(YU
z>q*FmWF&^+^pLk=5o}wcXeFm`^ju&d{a#%&w1hR2GgxaWP?452o-XcLi6>G|;j(UU
zKSs(*d>=gO^-&9Xe+8!#d4)H2o$>nKnFGoy)qwh}#!CA!;SUPmYpSDg#=c<BZYn1+
z-q;*$^kIaokFTAq!qzpz*nHp4VMHAWp!za^Dj==!blqY94M<2NKhJsI7?ScaL`x~_
z<C(Da)7pA#M@#FcmG#5VUk+J6Ev^5d>h*)R9#X#b(NfC#$8WLq+r4qb+)vX8y#PNt
z96<4I07ZmWesy`VJ{NwIUo4lFYhz=ZR;;T#-qV}tO>9rRmRqn_bG5nJ%JTT!(yRR6
ztZkR`jr+O$E2ZM<iR42QcC|KFsuq_Vg;Jpik>kfo)q=e`Zm(1e%Z_f&eUa!(^qoi!
zudSu`K9k;=8rd^;Zf9yOy?fv8ovD3$cb_}gmw5Q8UC$jkak^Zo+UFTI@YF*na_2?&
zAz$Ca8G%pr7JYsrT2l7f=ta-xBI=dB*Irunq8sT&)O#kkR4v<8p34|*vPoZOX$JjX
z?{$su=-p0qB+`wGPv<_p<*ZJ(ZA)U_ik?DG7hobi*aFuP%$9TbG6d#I>vq7SJE}wR
zV?8n2Y1@*cnV9Dd9knTW+N!SN%DT*4g+1jUy+m0(-Z_d<Uy=wd#RvU85?#M!;FG%^
z0}=H~%<ZK$%Il1BDC7|{h!K|X)hzMvG6A&sW+=36v=wUW4@TWaL!!TO(?j1@%b(Lb
z*HUc67MYE~5F4|!0v?)h!SRyfqNT24f@&M>+LAnsta))$%QmDhbgH8`aA!#WdpV04
zFA%jmk<*(ZatcT*oc+H~0cSu$B76V#KqFcTN%=h*Ev2j<_=<bb9EJhIz<<ZUE>zu3
zqs}k(H96X?ZBO2l@8me=-{0%ej;AYUt7h-z*tQ->F{0i^yR?8=IWJpBX!B24LfY`#
z@kjR7_X7m#k(NYDNqgM=4-}_7>?mOuLP6SMrT6>-Tf|#w$JoYZ`ZG83Qxg7s*IYuj
zZ#{bx4Nwow<6B+9pG{T$rRI5>M#Vg>WTmxOs^z#|y_fd>_>RY0K*qN?N=DjD<a}X=
zXo6lw95qWvC`;pX6n9zt|04RfLWKYdWV8y!4rs4n|47ZjJrep_*WejN)Kf&9eh?gt
zqR}}>&(nggnX^q*^Ki#CN7sqmPu01NCSm71orXP2*y+NaQViIE=vwLYBD2iGmML(O
zqbV)zteMGPP0%6W<NBM{9^)Ke$`65?(}?les%3CgaoAz&O1LZQ)|?fgEof`6LdzWO
zwQNuN*~jNSKWnSydtT>S+7}(``rw08@RCWeIMvkucofMsF@ODT930wI(~J@OYfE{>
z(ctDC$cO5btbCaDV!tMGJ`b(r6!PRrG$~@T3HaMljlvll5``a|InoM4S1uo}Pa-(>
zb(0v+sYlMc(NfC#o(x+*;EnqUUfaVMuQ}sAl$}{TA|;X*nhF(t_g3q6B*HhYcxz29
z>X&Fc(@@B*3yj=fQ*7*-!>+eL@9~TxF*nswXuCHai>h1V^mf!WcHa5xV2!mAZw*1!
zZ}R`F;=|<syzjH&J!-u{`djCjyc}DdYpL;N@_#I6BzcbUXM2<XGau$K3>XHOfw)V<
z81MhX%3jp|e^<&}4FiUO|0M%f_hfEz9MBp+3<pv2Ub_^|lQ>!CDo#Fd@2KFyBK(iD
z9S{HTcD#N3ta0F7hVN0XyCv>$-1m)uGM5VF;5zp*`9D^!u$~~J_~^`DM(xp3DoQu`
Le<Sz4@A?0~RO-In

literal 0
HcmV?d00001

diff --git a/wolfBoot/.DS_Store b/wolfBoot/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..7491068bbcf6fbb715f7137b57b0bcf45ca61b2a
GIT binary patch
literal 6148
zcmeHKJ5Iwu5S<}WFrrBXlv~kJq(PJ>GAGCdAc+)&VmSiQyX6v`gqniOP|@?|6Jmp*
zLI}i+wEH&m*ORjAAtD~%&PPN;BFeA?Sq>c{>Q2*^JByJe$7nLE%9Uz61Kj^Nf%Ms<
z8@i_1a?$Mn@ML2ttD=}Lt0^?u{bK+4;ra2jX`O#zU0pV^?jVY2VD;#TuIQpwb#T{v
zZ*SIqdD>goZsjPeO$VR(wEEcAK4J?7f`MQl82FzI;LR4vb`4_>27-ZL;Ee&f9}<>e
z?pPb@)qzb%0AL?#6`W<3keK9{JJyD<K-fZo7Ro+iu!TdP+%I>m4K1A5hY$A3>*0m9
zI`SuVC(aFH4+esPHUlziLWc7GpW!d_S7vtYI<{aS82A<jxL-_)F;e;4`XQ;jwF&DS
sOGNx?IY4l3eFWf#+#?5SG<%XW{Bp<IP_l?#!-4T3poGL04Ez8CuM6r$_W%F@

literal 0
HcmV?d00001

diff --git a/wolfCLU/.DS_Store b/wolfCLU/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..e8b08308fa4e3ea96e8ba947abd57ada566e08a7
GIT binary patch
literal 6148
zcmeHKOG*Pl5Unyn2Ha$4mVE(*fS8pqhVcZsfF=P&GE9iL?@PG%Ag(=v*Kp<DS6vk|
zt)nXul`80dJ@xH*A>C6%#FN{_h-g4W1%@EYqC-U8Y1%PoF|y<sP3KL$>PYc>RkHUU
z-O!rm%ggru$46UB-Bi_V+039RUW(!I!}H^5+q(F|y1Hs*<$HwDuGXUix~7Y~>dE1I
zd%O1C)BdJ*mZNUAJNV2e-^btjk%TlCXTTY72AqL!V*q!yNU^8rvoqifI0J7C$oUX3
z1WUuHn2ruisRaP`p-zIe^b!&i3`@hP2n&QY6sVzWEe2~i^uhc}!>Fj?#MXSURo*l&
zoT?*#Nbba?qR-BNGmtaT)5n3_|7ZBibT;{Uh(9?4&cHuofcw?7n&74EZvF6ja@Pio
ta|{vji?V=VoqYu0LC%q3GO9hu8h)i=RFo{DPvJoS5J-gh<P7`(1FtTwMjHSC

literal 0
HcmV?d00001

diff --git a/wolfCrypt-JNI/.DS_Store b/wolfCrypt-JNI/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..0cda9da56af16e449a6364eed62f0c7f9e1886e8
GIT binary patch
literal 6148
zcmeHKOG*Pl5Unyn2Ha$sWnVxr8<*0C$py>>ViHg!!vw{BAISr_7H{JfeAQJZ(>l5o
zF;&q0dg|NrV7jM>h^LS13DJm%DhxrEMURNO*K}mgVr0oNnXlSr+mqt&s$}m2dZ2q+
zZEm{zU%c)uO<UK?O}m7qs^a+k`R(PhYhC|f-QISyJ|T>bwH}?)9bK1IFRnh@yR~O$
zyV^yLrrq!0JD+kNN%rC53^)VMfHQEI4B*ZdsZJDqb_SdQXJE&GoDTs*Fd8Psd~{&S
zEdX!`br!6pmynoX7!8vmED+XEpoX%w7_8yY2lI=DNm0Xzt@&W9{L#E{u8#a6yAwx6
zpPd0`pk!d6k0ZJNXZU1#oBT4wpPT__;GZ$T!+Ks%@ltlTetA8)YXimtLqz<NEFf4H
kKLL1<b7Y*2Y7er8Uo=dLl12169Oyp+nGm0xfnQ+Y9Xtp_#{d8T

literal 0
HcmV?d00001

diff --git a/wolfEngine/.DS_Store b/wolfEngine/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..6feda239f5a4cc11312ac9a420e71979b672d8eb
GIT binary patch
literal 6148
zcmeHKJ5Iwu5S<|rvP9!D<z4`ZG*lE$WKNKlf_x+(isdMX-nXFU1~hck)ZBzC@MdR{
zc)?I21T)g^o1M?j`bpjo5%KtLF(k@~C_@uuQ94A-ovs557AMOb!^ym^*3r84S;(&i
zS$mIeX+!hXReSwsCwos-m*s3#&tS=>_k+{tx0g}dyZFYtzHZO@h%`FXdUQ-nnx<7R
z9zOcpwV!TwwUarjdcT6NV$yZI$~s(}0cXG&a0dP-130rqvLi+BodIXS8Q3u(`$Iqz
zEDRgPxOJe5*L+|f<|xo}QGmg)Fl-dzfv~0mHI?m&!I}<xu(-moQPgx|dtk6t-acM9
zR>%Ayh7%Wx-a7-%K*~T*hq;{p=lEqhANgsDkDLK#;EyrD{c=){@lkfRe)>E)YXjOP
snux?TqClW0mjDc89~nfa`h)0*D-0V&nMLd|9q1Q<NQigNzz;C+4p;C-ga7~l

literal 0
HcmV?d00001

diff --git a/wolfHSM/.DS_Store b/wolfHSM/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..9d81f74373d327a5194a8f4caf70bbf466872483
GIT binary patch
literal 6148
zcmeHKJ5B>J5FL{&T8SoQ=-g2uktVf?mJ{RxkVFDSS#3l_?^AFLPC%VoP*ZXR-gqX-
z8Wu`~U`Dc^?fH41w6=$c+~i>~A{r1;iN@%7&>_6ssX9_)RyvL`n$DYgomTs*`|ZGc
z@6m?tX}-E`@Bg(pXzHe_W~*j~m2!J_I(~lJUbeN1Z?x;XR@5TEjgBQBozs$TvaH3$
z(?@+f_v6cOmphA5H-{a3Ws~nC@;*$A0b{@zFb4i71GuwU$`e8BjR9l87}ztw=YvOM
z42n@O9UbUW2>{$b_c7*Lf_=PVP>h1mK%BS&#nowv;lv&5UhRTn6cl%IT6{RoyenQ@
z%8vLxnUf2G)*A!HK+Zr<rUSnJukg!s7Wui0&5QwK;Eyrj`qi|W;G^_z{q%W!*Lt*T
sG#0jtJb+-FJpwS{b7Yv5qW3(8T~LgI9EI1DJJ22ii4g0IfgfPt9d?CA$N&HU

literal 0
HcmV?d00001

diff --git a/wolfMQTT/.DS_Store b/wolfMQTT/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..d1f4124f80acb0c3c378fe6f47ebafbc615ed1d5
GIT binary patch
literal 6148
zcmeHKJx;?=4EAd))Cz_!NU-Gs3|*K*6{apoJpgT*s#TRJ6^K0p;v6j8g1Oh>3VePx
zX+j#Q3kV@wdj1msJUd^iyqbvI_$e6?4T-3a#n>4@9T4{OYDh;dXF%uoSkePs(T3*f
zsu695zsLZ;y8*3fNpnh|%l9{$F7j;aTXvI|!%<ltMRA(P@b=&CF0bD|b~kO2$&r!U
zb+z&g+fkPu(bpnfRXlV**?X#eY_hTs&CBwA?WVU@j|#4LBK5w0$<?aQyYK#L?en;-
zUE8DDL0e3{k5}%)#27FJjDeqG0B1H!|5VVlF<=ZB10@6eeF(4^L&ZYSe>$N22mtKC
z>;>06OK?u07%CQm@IaiT0wvYyh~Xq1_CVu8#X?Zh$?5Rnw6fC)#rf*kKk(t?LP68U
zfH6>KpewgSKL2mq=l^<=-5CSMz`tU^^`dDs#v|$3+IToVYXhtq77ND}f@KOW{85Zp
eK8i1}yucpt1u#@B1Yv>L9|2E;DP!PQ8TbSg9cZBd

literal 0
HcmV?d00001

diff --git a/wolfProvider/.DS_Store b/wolfProvider/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..c740f7827b12859732aeccda445ff1c90bb4d405
GIT binary patch
literal 6148
zcmeHKJ5Iwu5S>jT<OqtC(Cq~%(oh@Av^2Q@B$14w7+WAj>np$&I02#siHe#da09Nu
zo1K-tiwPx)(2TVE*7MnCKS!P{5t-~}IVGA9QG&rZ7-RauIL@PI1Mk@b8s1|%TU2G;
z%TvepD!}h<NHtwju`a^*_w?9B$|}$2>uL^9lHDF0J%7F(htcIP(fT6X^%Z5{yQV8z
z#C*j|7YX@J9|AsCS5_TgKN|DBGvAKz(IKtqJZ8P;-*6NUxyN@c_qUwx4mRb)_wm8^
zp{5F`0;<5aD1e^Lmh1}ZtO}?Csz9p%e;+IcW9qRHbe|4P?g#)J!R-udK1*<o^_Y5W
z1QCH5DFsTY@kb0J<?vgdmwIdjrJRgo#y+0e_!Ek8?C@KcP9_!9Srt$PVg-hBIpO|)
zvibZU7wMHMpbGpe1<WX)<ryBy_txISaj&%)XBcdp*9f*HSh!Y<TyDkt7|!6gya1*i
T8$ozr`bWUYppz=_rwV)lwRK?e

literal 0
HcmV?d00001

diff --git a/wolfSSH/.DS_Store b/wolfSSH/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..dc533507c7bc3eab321bf082e8d21b178446cc7e
GIT binary patch
literal 6148
zcmeHKJ5B>J5S>XPv=U89pz;MM(oiqaa)MkSB#}TUtBv^dJ{AQvmq45$qM_!EXQHfO
zNr^-<BiYZMkH>z}+B-zV<EO=lXh=i_njp)dLqy$a>Y1|`S=Ja$=1sjyTFn22$lm+(
zK=(9X-n94sx!zjprmAMkW(H01$Y&QX>(|S+b+N;`x^1o6iwL75%}3{SN7s4Q_mA)P
zcJAl5(@pMdjk?+H;5VOqA5+<fi!<O1I0MeWVKQKEba8x`$M;h^1J1w>2IPJSXo96-
zR7_U~x>N!H2T&)$SZWE035KO%RD=b>8Vb}<wi1Ii9Qt5>rD0UmaAGSy*fMX57f#u+
zen{@brK0!FfHROY(AViu-v29nGMz<!9^x}+z!}&x26#|Ssxb~_Z|jfa$y*!Hrf4GK
q7i9p!IQt2}MDCH3WK?^QG5kuys3@z5K7|AQM<5a6oip$U41591?MM{>

literal 0
HcmV?d00001

diff --git a/wolfSSL-FAQ/.DS_Store b/wolfSSL-FAQ/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..d104a8c4ca6d8ce3ec81c5ff1a9cd56f9ce7a695
GIT binary patch
literal 6148
zcmeHK&u`N(6n<{YmUbHIVMx;?P$aHhX{lCCaLGzJaNvgsf&-wgX~G(o##NG1P*o{+
z;BVoMxFNxRz`wzn6TD}8qsdy12r)nD`E%^|IeuRfI|cyOnYc}WDgYShgry1=ON{!-
z&sagV5SfWFJcytU3A{$vrWMc%{ObzPw_AZBc+dwI%hT`oPQV9Fz#Z(Tm;?0sPhnW2
z1>r6-j*;;Kd<ekH#ec}fZ^8(pUEnZ)7<S<$vg_~$TZ1f<UCuEp8Rl}%+Z?Be_lRJS
z8~MlbC}$dvRi+=Eap1>Eqw$Ruilqx{>&CjVVLZ2od}=5CWD<A!(Nns5#ChPH)cek3
z-<$TTTeo<a^!?C_1i^Pb40-m%4_!X(@JZ;#f@{kTqimFW)t%X_*}mSanY(+9dCi<P
zTl=k=x!-Qh=Vjy4)oV8&_Kt&5$lu}I(HO3?!ZsD2z<aEytb?PbJ>a9U?7H#!ch87-
zyDC%T{?<<W)Auj*TorG`-9Pk>hl`^=purXIl^ulv509{gX16A_m(Mu+1PT<h_!ebi
zv-7@pB|p~U?7v<-oqcAE#T-_}WHUL$+niHV?~<``PV?7kYX!6ds}-R2!9*vt6s8iz
z(t(9I0w9*KSs2#ocY!#jLQ7#P5qr>>q#{ZxQ%4LY>DX?nI7?wFQPP2_!v|A$X6l5(
z#NBaxQ-lMvB<fNtpcTj}P?VQd+W&8_KL2M)`bsOH75J|dV5P3z?O;l3Z#|P7?X@QQ
sAvzhwr4j`N3$-1K3T?&P=)$niqza;?FqMccX!=J$$e;_Yz+YA17ua;p!T<mO

literal 0
HcmV?d00001

diff --git a/wolfSSL-FIPS-FAQ/Makefile b/wolfSSL-FIPS-FAQ/Makefile
new file mode 100644
index 00000000..4d7e9c39
--- /dev/null
+++ b/wolfSSL-FIPS-FAQ/Makefile
@@ -0,0 +1,22 @@
+-include ../common/common.am
+.DEFAULT_GOAL := all
+all: pdf html 
+
+SOURCES = section01.md \
+		  section02.md
+
+ifeq ($(DOC_LANG),JA)
+    PDF  = wolfSSL-FIPS-FAQ-jp.pdf
+else
+    PDF  = wolfSSL-FIPS-FAQ.pdf
+endif
+
+DOXYFILE = Doxyfile
+
+
+.PHONY: html-prep
+html-prep:
+
+.PHONY: pdf-prep
+pdf-prep:
+
diff --git a/wolfSSL-FIPS-FAQ/header.txt b/wolfSSL-FIPS-FAQ/header.txt
new file mode 100644
index 00000000..fa1b4f12
--- /dev/null
+++ b/wolfSSL-FIPS-FAQ/header.txt
@@ -0,0 +1,21 @@
+% wolfSSL FIPS FAQ ![](logo.png)
+
+---
+header-includes:
+    # Blank pages on new sections
+    - \usepackage{titlesec}
+    - \newcommand{\sectionbreak}{\clearpage}
+    # Fancy page headers
+    - \usepackage{fancyhdr}
+    - \pagestyle{fancy}
+    - \fancyfoot[LO,RE]{COPYRIGHT \copyright 2025 wolfSSL Inc.}
+    # Wrap long syntax highlighting code blocks
+    - \usepackage{fvextra}
+    - \DefineVerbatimEnvironment{Highlighting}{Verbatim}{breaklines,commandchars=\\\{\}}
+    # Wrap long non-sytax highlighted code blocks
+    - \usepackage{listings}
+    - \let\verbatim\undefined
+    - \let\verbatimend\undefined
+    - \lstnewenvironment{verbatim}{\lstset{breaklines,basicstyle=\ttfamily}}{}
+subparagraph: yes
+---
diff --git a/wolfSSL-FIPS-FAQ/mkdocs.yml b/wolfSSL-FIPS-FAQ/mkdocs.yml
new file mode 100644
index 00000000..fd3320fe
--- /dev/null
+++ b/wolfSSL-FIPS-FAQ/mkdocs.yml
@@ -0,0 +1,25 @@
+site_name: wolfSSL FIPS FAQ
+site_url: https://wolfssl.com/
+docs_dir: build/html/
+site_dir: html/
+copyright: Copyright © 2025 wolfSSL Inc.
+nav:
+    - "1. Introduction": index.md
+    - "2. FAQ": section02.md
+theme:
+  name: null
+  custom_dir: ../mkdocs-material/material
+  language: en
+  palette:
+    primary: indigo
+    accent: indigo
+  font:
+    text: roboto
+    code: roboto mono
+  icon: "logo.png"
+  logo: logo.png
+  favicon: logo.png
+  feature:
+    tabs: true
+extra_css: [skin.css]
+use_directory_urls: false
diff --git a/wolfSSL-FIPS-FAQ/src/section01.md b/wolfSSL-FIPS-FAQ/src/section01.md
new file mode 100644
index 00000000..e5efa1f0
--- /dev/null
+++ b/wolfSSL-FIPS-FAQ/src/section01.md
@@ -0,0 +1,14 @@
+# Introduction
+
+This page lists some of the most common issues and questions that are recieved by our wolfSSL security experts, along with their responses. This FAQ is useful for solving general questions that pertain to building/implementing wolfSSL FIPS. If this page does not provide an answer toyour question, please feel free to check the wolfSSL Manual, or contact us at support@wolfssl.com.
+
+## Questions
+
+1. [Why did I receive wolfSSL_X.X.X_commercial-fips-OE-v2.7z when we validated with Y.Y.Y?](./section02.md#why-did-i-receive-wolfssl-xxx-xommercial-fips-oe-v27z-when-we=validated-with-yyy)
+2. [How do I know if I am using the FIPS module?](./section02.md#how-do-i-if-i-am-using-the-fips-module)
+3. [Does the Power On Self Test (POST) really have to run every time?](./section02.md#does-the-power-on-self-test-post-really-have-to-run-every-teime)
+4. [Followup POST Q: What about this feature NO_Followup POST Q: What about this feature NO_ATTRIBUTE_CONSTRUCTOR? Can I use that to by-pass the POST by not running it in the constructor?](./section02.md#followup-post-q-what-about-this-feature-no-attribute-constructor-can-i-use-that-to-by-pass-the-post-by-not-running-it-in-the-constructor)
+5. [Followup POST Q: Why is the feature NO_ATTRIBUTE_CONSTRUCTOR there then if I can not use it?](./section02.md#followup-post-q-why-is-the-feature-no-attribute-constructor-there-then-if-i-can-not-use-it)
+6. [Followup POST Q: Who can determine when NO_ATTRIBUTE_CONSTRUCTOR is allowed?](./section02.md#followup-post-q-who-can-determine-when-no-attribute-constructor-is-allowed)
+7. [Followup POST Q: What about with fips-ready, can I use NO_ATTRIBUTE_CONSTRUCTOR with fips-ready?](./section02.md#followup-post-q-what-about-with-fips-ready-can-i-use-no-attribute-constructor-with-fips-ready)
+8. [WhatWhat can go wrong for the end user after basic testing?](./section02.md#what-can-go-wrong-for-the-end-user-after-basic-testing)
diff --git a/wolfSSL-FIPS-FAQ/src/section02.md b/wolfSSL-FIPS-FAQ/src/section02.md
new file mode 100644
index 00000000..4387ed11
--- /dev/null
+++ b/wolfSSL-FIPS-FAQ/src/section02.md
@@ -0,0 +1,323 @@
+# Frequently Aked Questions
+
+## Why didWhy did I receive wolfSSL_X.X.X_commercial-fips-OE-v2.7z when we validated with Y.Y.Y?
+
+Example: I received wolfssl-4.8.1-commercial-fips-ARMv8-A-v2 but the validation was for version 4.5.4, why did I receive a 4.8.1 release?
+
+A: The version validated (IE 4.5.4 from the exmaple) applies to the wolfCrypt module ONLY. It was loosely based off the wolfSSL library version at the time of validattion however the wolfSSL version will continue to update as enhancements and fixes are applied in subsequent releases. You will alwasy receive the latest release with the proper wolfCrypt module (v4.5.4 in the exam-ple) inside even though the wolfSSL version (4.8.1 in the example_ continues to update over time! If you have any questions on this, contact us at fips@wolfssl.com or support@wolfssl.com
+
+## How do I know if I am using the FIPS module?
+
+A: Answer, follow the build instructions in the FIPS User Guide (for cert 3389) or the security policy (for cert 2425). At runtime, call an API that only exists in fips like 'wolfCrypt_GetStatus_fips()'.
+
+NOTE: all FIPS bundles ending in -v2 will come with a directory in wolfssl-root like 'v4.1.0.-SP-and-user-guide' which will contain .pdf copies of the Security Policy and User Guide for that FIPS module version
+
+## Does the Power On Self Test (POST) really have to run every time:
+
+* The app restarts?
+* For each individual process/application?
+* The device power cycles?
+
+A: yes (to all of the above). There is no exception that allows the POST to be skipped. This is a NIST requirement. See https://csrc.gov/CSRC/media/Projects/Cryptographic-Module-Validation-Program/documents/fips140-2/FIPS1402IG.pdf section "9.10 Power-Up Tests for Software Module Libraries" (Excerpt below). "Shall" means "no exceptions"
+
+```
+AS09.08: (Levels 1, 2, 3 and 4) Power-up tests shall be performed by a
+cryptographic module when the module is powered up (after being
+powered off, reset, rebooted, etc.).
+AS09.09: (Levels 1, 2, 3 and 4) The power-up tests shall be initiated
+automatically and shall not require operator intervention.
+TE.09.09.02: The tester shall power-up the module and verify that the
+module performs the power-up self-tests without requiring any operator
+intervention.
+```
+
+* Followup Post Q: What about this feature NO_ATTRIBUTE_CONSTRUCTOR? Can I use that to by-pass the POST by not running it in the constructor?
+
+A: Turning this feature on (assuming it does not cause a compile time error) will immediately make the module no longer FIPS compliant.
+
+1) Once this feature is enabled the operating system itself has to be modified and re-compiled, adding a call to wolfCrypt modules fipsEntry() function any time the OS is starting a new process/application/module that uses the crypto module, or if the OS is booting for the first time following a power cycle.
+
+2) This feature is not for allowing the POST to be skipped or optional, it allows for the POST to be called by the OS after an RNG is initialized or a memory zero (that would erase the POST results) has completed. The call to fipsEntry() SHALL still remain beyond operator control (not optional) per TE.09.09.02 in the above question/answer excerpt
+from https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Module-Validation-Program/documents/fips140-2/FIPS1402IG.pdf section “9.10 Power-Up Tests for Software Module Libraries”.
+
+* Followup POST Q: Why is the feature NO_ATTRIBUTE_CONSTRUCTOR there then if I can not use it?
+
+A: It exists for two select exception cases:
+
+1) The first exception is when an operating system would perform a memory zero during an application start that would erase the POST result (pass/fail) and therefore the POST must be called AFTER the memory zero. To remain FIPS compliant the call must be proven to the CMVP to be not optional and not require operator intervention to trigger (has to be called by the OS before control is returnd to the user-space app or kernel module).
+
+2) The second exception is when an entropy source can not be made available to the attribute constructor. In this case the RNG has to be initialized first and then the call to fipsEntry() made. Again the call must be proven to the CMVP to be not optional requiring no operator intervention to trigger (has to be called by the OS before control is returned to the user-space app or kernel module).
+
+* Folloup POST Q: Who can determine when NO_ATTRIBUTE_CONSTRUCTOR is allowed?
+
+A: Only wolfSSL staff in collaboration with an NVLAP accredited FIPS lab during an OE operational testing effort can determine the viability of the feature NO_ATTRIBUTE_CONSTRUCTOR. If the feature is warranted for a specific operating environment: 
+1) It will be noted in the FIPS user guide section for that operating environement
+2) The bundle releases the customer receives from wolfSSL will build cleanly with the feature enabled (no compile time error)
+3) The default settings for the module will turn the setting on.
+
+* Followup Post Q: What about with fips-ready, can I use NO_ATTRIBUTE_CONSTRUCTOR with fips-ready?
+
+A: The term "fips-ready' implies a module is abiding by ALL the FIPS requirements such that it could be submitted to the CMVP without any changes and achieve FIPS certification. Using the feature NO_ATTRIBUTE_CONSTRUCTOR without woldSSL staff and an NVLAP accredited FIPS lab approving it for that operating environement would imply the fips-ready solution is no longer a fips-ready release, that release would no longer be considered "fips-ready" until reviewed by wolfSSL staff in collaboration with an NVLAP accredited FIPS lab.
+
+## What can go wrong for the end user after basic testing?
+
+A: (Multi-part)
+a) The integrity test can fail due to corruption
+b) Power On Self TEst can fail
+    i) This is very unlikely after initial testing.
+   ii) wolfSSL has seen cases where the customer receiving the binary had the wrong hardware for with PAA.
+  iii) wolfSSL has also seen a case where the hardware was correct but the with PAA feature (AESNI) was disabled in the BIOS settings of the end-point system from the factory. In this case, the end customer had to go into the BIOS and enable the AESNI feature on the chip for the FIPS module with PAA to not seg-fault on their system.
+   iv) Windows: ASLR (Address space layout randomization) is enabled on the computer where the test is failing meaning the OS is free to "chop up the FIPS module and scatter it about in memory" and somehow still expect the intgrity hash to be the same value. (This is impossible, please ensure ASLR is disabled on any PC working with the FIPS module or at a minimum ASLR is disabled for the apps/programs consuming the FIPS module actively)
+    v) Windows: Randomized base addressing in Windows OS. Because the function addresses are included in the integrity check, the module needs to load at the same location in memory each time. There are 2 factors to this one: 
+         1) Must diable Random base address at the project level. Example: https://github.com/wolfSSL/wolfssl/blob/master/IDE/WIN10/wolfssl-fips.vcxproj#L159
+         2) Must assign a physical fixed address (and this is KEY!!) that is NOT in contention with any other DLL on the system. Example: https://github.com/wolfSSL/wolfssl/blob/master/IDE/WIN10/wolfssl-fips.vcxproj#L158
+
+NOTE: IF an address is chosen that IS in contention with another DLL on the system, the OS will automatically be allowed to assign a random base address even if random base address is set to false.
+
+HINT for this possibility: To pick a base address not in contention with another DLL the HIGHER in the address space you go the least likely it will be to have a contention.
+
+c) DRBG continuity / health check can fail if connections persist for extended durations.
+    i) wolfSSL stringly recommends that (at a MAXIMUM) at least once in a 24 or 48 hour period, persistent connections be shut down and a new handshake performed.
+   ii) This is a best security practice in general.
+  iii)An ideal scenario would re-negoriate ephemeral keys every 8-10 minutes (complete and full shutdown and fresh handshake to re-establish the connection).
+
+## Movinf from 140-3 to 140-3, what's new?
+
+1. Support for 3DES has been removed, please remove use-cases from applications that involve dependencies on 3DES
+2. All applications now need to call wc_SetSeed_Cb now in FIPS mode with the 140-3 module! This should be the first item AFTER setting the FIPS callback that alerts you to any issues with the module and prints the hash out if the integrity check needs updated.
+
+```
+/* Old callback same as before */
+wolfCrypt_SetCb_fips(myFipsCb);
+
+/* Additional new callback */
++#ifdef WC_RNG_SEED_CB
++   wc_SetSeed_Cb(wc_GenerateSeed);
++#endif
+```
+
+    a. This is because things are changing with regard to the entropy. Externally loaded entroy must now be explicit and all entropy sources will be validated in an ESV (Entropy Source Validation) stand-alone. FIPS modules will no longer be allowed to make entropy claims on new submissions.
+        i. The CMVP was tired of validating and re-validating the same entropy sources over and over. The idea is that now an entropy source will be validated one time and many FIPS modules may now call that entropy source and point to the 1 ESV certificate for any entropy claims.
+    b. wolfSSL Inc also wanted an option available should one wish to call one of the ESV validated entropy sources so a callback option made sense.
+
+### API Compatibility between 140-2 and 140-3:
+## Will my applications that are linked agaist the 140-3 module still work with the 140-3 module?
+
+A: Absolutely! wolfCrypt FIPS modules v2.x (cert #3389, 140-2 module) has 100% API compatibility minus the 3DES services with wolfCrypt FIPS module v5.2.1 (cert #4718, 140-3 module). In addition to the 140-2 APIs, there are new services (TLS KDFs, AES-OFB, etc) and newer extended APIs. For a full list of new services and new API definitions supported by the 140-3 module please refer to the FIPS 140-3 User Guide [UG] which includes an exhaustive list of every FIPS service and correlated API + description(s). If you need a copy of the [UG] please let the wolfSSL team know by emailing support@wolfssl.com requesting a copy of the FIPS [UG]. 
+
+### The wc_SetSeed_Cd() callback and the TLS Layer:
+
+If a user-supplied seed routine is to be used in conjunstion with the TLS layer, wc_SetSeed_Cb(user_seed_function) must be called after the initial wolfSSL_Init(), and before the application calls wolfSSL_CTX_new().
+
+Example:
+```
+/* always set first in FIPS */
+wolfCrypt_SetCb_fips(myFipsCb);
+wolfSSL_Init();
+wc_SetSeed_Cb(seedCb);
+wolfSSL_CTX_new(&ctx);
+```
+
+To avoid potential implementation bugs users could alternatively use the setting '#define CUSTOM_RAND_GENERATE' and register their own custom RNG seed gen callback.
+
+Example of setting custom seed gen without depending on wc_SetSeed_Cd():
+
+```
+extern unsigned int my_rng_seed_gen(void);
+#undef CUSTOM_RAND_GENERATE
+#define CUSTOM_RAND_GENERATE my_rng_seed_gen
+/* Implement my_rng_seed_gen() at the application
+level */
+```
+
+### The POST
+Under 140-2 POST stood for "Power On Self Test" and ran EVERY algorithm self-test leading to slow power-on / boot times.
+Under 140-3 POST stands for "Pre-Operational Self Test" and only runs the integrity check of the module (and any dependency self-test to support the integrity check). Since HMAC-SHA2-256 self-test must first run and then the integrity check is performed. No other self-tests run at this stage in the 140-3.
+
+### Threading considertation for all CASTs()
+
+Calling a CAST in a thread for the first time or allowing a CAST to run automatically by using a service for the first time in a thread may result in another thread getting a "FIPS_CAST_STATE_PROCESSING" error (meaning that another thread is actively running the CAST) if it attempts to exercise the same CAST in parallel. This will result in the module dropping into the degraded mode of operation.
+
+Once degraded mode is active the only recovery from degraded mode is a power cycle of the module or by re-running the integrity test to simulate a reload/power cycle of the module. To simulate reload or power cycle of the module, shut down all threads then call wolfCrypt_IntegrityTest_fips(); before starting threads up again.
+
+To avoid this problemt one can simply call wc_RunAllCast_fips()^1 on startup along with the other FIPS specific initializers. 
+
+Example:
+
+```
+wolfCrypt_SetCb_fips(myFipsCb);
+
+/* Alternatively call wolfSSL_INit() or comparable API */
+#ifdef WC_RNG_SEED_CB
+   wc_SetSeed_Cb(wc_GenerateSeed);
+#endif
+
+wc_RunAllCast_fips();
+```
+
+Once a CAST has run at least once it will no longer trigger automatically when a service is used. The application may call a CAST at any time (periodically re-check the CAST is still passing) if desired but should always do so in a thread-safe way to avoid thread contention while the CAST is executing.
+
+Another method would be to (at a minimum) run at least the individual CASTs for any algorithms that will be used in threads if you wish to avoid a subset of the CASTs for performance/boot up time considerations where the CAST IDs' are as follows:
+
+* FIPS_CAST_AES_CBC
+* FIPS_CAST_AES_GCM
+* FIPS_CAST_HMAC_SHA1
+* FIPS_CAST_HMAC_SHA2_256
+* FIPS_CAST_HMAC_SHA2_512
+* FIPS_CAST_HMAC_SHA3_256
+* FIPS_CAST_DRBG
+* FIPS_CAST_RSA_SIGN_PKCS1v15
+* FIPS_CAST_ECC_CDH
+* FIPS_CAST_ECC_PRIMITIVE_Z
+* FIPS CAST_DH_PRIMITIVE_Z
+* FIPS_CAST_ECDSA
+* FIPS_CAST_KDF_TLS12
+* FIPS_CAST_KDF_TLS13
+* FIPS_CAST_KDF_SSH
+
+Example:
+
+```
+wolfCrypt_SetCb_fips(myFipsCb);
+
+/* Alternatively call wolfSSL_Init() or comparable API */
+#ifdef WC_RNG_SEED_CB
+   wc_SetSeed_Cb(wc_GenerateSeed);
+#endif
+
+/* Running just one CAST by ID */
+if (wc_RunCast_fips(FIPS_CAST_RSA_SIGN_PKCS1v15) != 0){
+    err_sys("RSA PKCS v1.5 CAST failed");
+}
+```
+
+### wc_SetSeedCb() a bit unique:
+
+wc_SetSeed_Cb(); is the first operational use of the DRBG and as such the CAST will run when the callback is set for the first time. To avoid a race condition on the CAST users should set the seed callback one time on startup and not on a per-thread basis or one time globally and then once perthread is also acceptable if the CAST has passed by the time threads are launched. This would be for a scenario where thread-A needs entropy-source-A and thread-B uses a different entropy source. Please remember that wolfSSL_Init() will set the seed callback and therefore should not be called on a per-thread basis unless called at least once globally first. A good practice if setting per thread might be:
+
+```
+int main(void) {
+ int ret;
+ /* always call first */
+ wolfCrypt_SetCb_fips(fipsCb);
+ /* alternatively just call wolfSSL_Init() or
+equivalent function such as wolfMikey_Init() */
+#ifdef WC_RNG_SEED_CB
+ {
+ ret = wc_SetSeed_Cb(wc_GenerateSeed);
+ if (ret != 0) {
+ printf("wc_SetSeed_Cb failed with %d, %s\n",
+ ret,
+wc_GetErrorString(ret));
+ }
+ }
+#endif
+}
+```
+
+By checking the return value of the call the function should block prior to threads starting up avoiding any race conditions on the CAST completing prior to threads consuming the DRBG.
+
+### Key Access Management
+
+c. Users calling wolfSSL (SSL/TLS) API's directly that involve loading our using a private key must manage the key access at the application level. To be able to read in or use a private key the application must allow this by calling
+
+```
+wolfCrypt_SetPrivateKeyReadEnable_fips(1, WC_KEYTYPE_ALL);
+```
+
+prior to loading or accessing a private key.
+
+e. Once complete with key operations users shall call
+
+```
+wolfCrypt_SetPrivateKeyReadEnable_fips(0, WC_KEYTYPE_ALL);
+```
+
+to lock key access once again.
+
+f. Macros are available to replace the above long API calls with a shorter macro when including
+
+```
+<wolfssl/wolfcrypt/types.h>:
+PRIVATE_KEY_UNLOCK() ;
+PRIVATE_KEY_LOCK() ;
+```
+
+the key access can optionally be unlocked* only once on startup and locked again prior to shutdown** or... If the application wishes to be very strict, these can be called immediately before and after each call that involves a private key load or use.
+*Be aware that LOCK and UNLOCK are thread-local. Aas this is a semaphore, each UNLOCK must be paired with a corresponding LOCK at the same scope to properly decrement the lock count. Alternatively doing a "true lock" (example provided below) may be the best approach for proper lock management. 
+** "application shall lock again before terminating" - This is a documentation requirement, this is not enforced at run-time by any error or prevention from exiting. Failing to re-lock key access before exiting makes the application "not FIPS compliant" however.
+
+```
+/* true_lock will always decrement the lock counter to 0 regardless of scope */
+static inline int true_lock(void)
+{
+int i;
+int lockStatus = wolfCrypt_GetPrivateKeyReadEnable_fips(WC_KEYTYPE_ALL);
+#ifdef VERBOSE_LOGGING
+printf("lockStatus (pre-loop) is %d\n", lockStatus);
+#endif
+for (i = lockStatus; i > 0; i--) {
+wolfCrypt_SetPrivateKeyReadEnable_fips(0, WC_KEYTYPE_ALL);
+lockStatus = wolfCrypt_GetPrivateKeyReadEnable_fips(WC_KEYTYPE_ALL);
+#ifdef VERBOSE_LOGGING
+printf("lockStatus (loop %d) is %d\n", i, lockStatus);
+#endif
+}
+return lockStatus;
+}
+...
+if (true_lock() != 0) {
+printf("true_lock failed to lock\n”);
+return error_code;
+}
+```
+
+g. To support an application that can link to both a wolfSSL FIPS library version and a wolfSSL non-FIPS library version users can implement NO-OP versions of the macros at the application level for the non-FIPS cases like so:
+
+...
+#if !defined(PRIVATE_KEY_LOCK) && !defined(PRIVATE_KEY_UNLOCK)
+#define PRIVATE_KEY_LOCK() do {} while (0)
+#define PRIVATE_KEY_UNLOCK() do {} while (0)
+#endif
+```
+
+API's that require UNLOCK before first use (should also be re-LOCKED after use):
+
+...
+● wc_PRF
+● wc_PRF_TLSv12
+● wc_HKDF_Extract
+● wc_HKDF_Extract_ex
+● wc_HKDF_Expand
+● wc_HKDF_Expand_ex
+● wc_HKDF
+● wc_Tls13_HKDF_Extract
+● wc_Tls13_HKDF_Extract_ex
+● wc_Tls13_HKDF_Expand_Label
+● wc_Tls13_HKDF_Expand_Label_ex
+● wc_SSH_KDF
+● wc_RsaExportKey
+● wc_ecc_export_x963
+● wc_ecc_export_ex
+● wc_ecc_export_private_only
+● wc_ecc_export_private_raw
+● wc_ecc_export_x963_ex
+● wc_ecc_shared_secret
+● wc_ecc_shared_secret_ex
+● wc_DhGenerateKeyPair
+● wc_DhAgree
+● wc_SRTP_KDF
+● wc_SRTCP_KDF
+● wc_SRTCP_KDF_ex
+● wc_SRTP_KDF_label
+● wc_SRTCP_KDF_label
+● wc_ed25519_export_private_only
+● wc_ed25519_export_private
+● wc_ed25519_export_key
+● wc_ed448_export_private_only
+● wc_ed448_export_private
+● wc_ed448_export_key
+● wc_PBKDF2_ex
+● wc_PBKDF2
+...
+
diff --git a/wolfSSL-FIPS-Ready/.DS_Store b/wolfSSL-FIPS-Ready/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..1a03011dc63342f64eaac324329d7782609dc152
GIT binary patch
literal 6148
zcmeHKyGjE=6uo1DETl;(R)dv|MH;)n7}m}%KcGp#AXzpj_WJ{Z|6wE8TKhZxg6GT~
zlO0_xMf6^nIWzY;dtm1wB5rcK7>Nu;q(CD&4myPDPSZ|urqMCSXgaT}bw`TdtK!;w
zawFF=UtPA>U!QF)Rb7^|RXu~IcpC2?Kfk`5w5^M8tm|bv>pj9`SL?}<T**aV_3q%K
zy<Pj^a8o<WQPtZOeC3m`<B{tyF$RnQW55{rpA6v4rW6B3>x}_pz!=yt!2Q9a5kta8
zF>W2`;u8SahdK(zd`mFKCkzQ2MOYwCLxCFV(i6jJIP^aGg@lcwhKq}pktbDtf4sO@
z9eN+##RWy{jR9jIXP~FkA<zF){4$-7{5-^F#(**K#~5(^a#~LCQR!^`^m#mMJ=!@M
qg?<eO5R9`+04Cf=_M%bko@4lhgpDGzP#?pAb`gk#SZ56U00VDe>qVUa

literal 0
HcmV?d00001

diff --git a/wolfSSL-JNI/.DS_Store b/wolfSSL-JNI/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..9882128fe419571bc2e506f845341d847acf7aff
GIT binary patch
literal 6148
zcmeHKJ5Iwu5S<|rvP6>-QSAjN(omboT!0ja4w6Wq$d)4z66GF%jtkIp1!`(;!WDS4
zGbCOxlnB9$wENccT|ddY9wOq&&0<V6BBBCAkY&*$qV6?qnX?#Ka*U_*wpsP0_`NFG
z`+%<Listo2cmJpN8%xtx)vRu3&=imL-oexB^I_Mz_{O@r>}GvH7;S4k+NUL*=T&cy
zKia#s?@rdWvm8yk*}+#n`95A`A1=;-GvEw31OJl&+}R?<j-t=bfHU9>tQnB=Az%oW
zhEXvc9hg!J031S{1Z(LfBqkV^hEWj~2x}-%L)lsk)^O;9`IUxIQNxL?`CzO3-n?+C
zj{G6H6PJoUI|I%@&cHw)M{@rk;gjiY^79aXat54%KgIwLt7$dCOWED}>GkBU4H#z_
sBH|Zi0l_-^3BZG#BfH6{_8@Ecm4;DKvWPx~1N}!J5#p0G@B<9I0sC-9hX4Qo

literal 0
HcmV?d00001

diff --git a/wolfSSL-Porting/.DS_Store b/wolfSSL-Porting/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..d9586356a700d8d7bd36949b1017302c53f0ceac
GIT binary patch
literal 6148
zcmeHKy-EW?5S}qX4s0S=h}9Oh7HO>4aF$ki0ZoDtNw}a`3i}fFc@S$~$5-&1oiVx9
z(^5odVE5ab-@OlR_lAgg^e`I|4Tz}15M)_&h^RYFJLW7#mK?+Jv{|k?Qv6<(?7c_#
zbVt+0yuJU6{jFu$)b(W1OrWW**GH$%uP<k9>+Bor>ZYAFle4S!=!9<Rs;J732gqC4
z+qI9MHnl(aY<KXLPq7bPql}9);0!ne&cHuq0C%=XwWsK_GvEw30~-e9d<YnV(J(3I
zqXScJ0f2p|vtTW~gv12HXqXgXfv|=GHI%KzU=4>pm|rwZiW*LA%?DfM_vVFjb>t7(
zoj5A`><l;qB?CQu9LW8Dj!&ku$uC3v$r*44{ul$?ugCQWFJ*V@r`MCaHeg(0h=^a3
o1qAEjCjbv}jvQvA+Jmg&7Y&o5WD$K12l|gdCd4Oa;0G9Z1I_A0>;M1&

literal 0
HcmV?d00001

diff --git a/wolfSSL-Tuning/.DS_Store b/wolfSSL-Tuning/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..812a7748652ea35a32f59aa0d9ef15871ebbd679
GIT binary patch
literal 6148
zcmeHKy-EW?5T5aZ9N453t1WC5(pazI?1j8QOae;CaY3=ar?RpWd<UOGD{H^m8IxN*
zEk$$&cE7#(-TUBnZ-|J;w~G<ckcdhQL6$|2h`QIbW6ok^$uXMDn|j@o;`gd#?*-k^
zHO*I--TfavZ7p?ERkKwygQhGV4o>c$A5Xj1#W&XVRX6K7!f03P(Ge}_BCmS<`qAF4
z{c^Xdo#m*T?GC>3$@ejpeYiLS&VV!E4E#?9aA%8@dx}0g1I~amuwg*Xhkzj%4O_)@
zbYMy?0B`_x60D_{keFZ?4O>N6AgrN44P|RFSi_+Y<`)fHMGYsm=7X*Bd-KAnI`W6)
zP8=0|b_Se*oPk0ghjRa);gjiY^79aXat54%KgIwLs!27*OWED}>GkBU4H#1l5%Ftf
o0l_-^3BZG#Bm2py_8@EcMZ;E6vWPx~1N}!J5#p0G@B<9I0WV8O761SM

literal 0
HcmV?d00001

diff --git a/wolfSSL/.DS_Store b/wolfSSL/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..6d6c4075d119835130d8036403dcfd962c2f99b3
GIT binary patch
literal 6148
zcmeHKy-ve05I(mN3baE<BpCbx3|*K*6`r6k0BsQ!YLp6!STiy3Oe}!J3~#{Bz|O>X
zK9ky{Wdwxor1R(8kI()h<zgZ-gUd;us7FL8l(DsmVTG`twIMBU=>iR}(I1Y>V(zS4
zjc7IeMF#lYwdsP+X*@d(-{14=(o>XqKAM#ySkkNao&DRl$Ai#2`Nlh+2CH_SkVYF)
zkM`({j-#rbhwHEYu=dTgt{tsWl*=8gi;4Epec^p1w4f90WfARx%w6aU>)*F`KhIw0
zhP7Auqq=0du8K0C3@8J?%>a5fOWG0CQ5jGMl!2N7{ytbJW9G3Ebe|3k?g{`*V0MBz
z-z7N5ddxglg783$qyi<?_$!8ybl9zr%RE+sl1|27K8&wy{0+sp>R8{pa59;oj>>>C
z5Hrx0#~%0p!}a(7I7y$B0cGG{F<_E>m=ACy-&-4p<6di_M^F}ys|4#5Ok68QEVtrq
as1w*NPk@=nN)Q%^{s=f4bWjF<lz|V3Ol0@~

literal 0
HcmV?d00001

diff --git a/wolfSentry/.DS_Store b/wolfSentry/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..07c95a919056f790ab9fbc1e757c1499b7232d0b
GIT binary patch
literal 6148
zcmeHKy-ve05WZ_G6p1Ax14w=WhAhmc3IlUr0NP3*)F>4Q=8QZJ55UaGtMCeZ=exEs
z1V)75PO?Ayetga+#r6>qPw$r%QAtDvnjp(yKtw%g8kw^gS=Oj#i?&%O?Z##<zZPWg
zW4fbTTCA@6`yV~*EKOV2^Hn>CrZ}$-PoCdiPW#s7H`euaf7OUE+S7b=OgD6yWu?cX
zkM@4<*K(UXTcc@rJNU{c+Xp?#K3tpuXTTY72L2}lxU)ryeMRq`0cXG&*fJpJLqHRZ
zhMi(MI?$zOK5znc5{#vmkeFZ?4Le0xAgrN44P`4aSi_+Y<`)e+MGYsm0)s8{rg-6$
z9qWhWP8=1zcLtn+oPn`UOS%8g@XHJq`FV)XoB?Oxk1@cLdR9;IQFga}`aHR71KI_e
ri1>9ffMA?G0x*$t<RBT<9%Kx^XxJ&rDxy!}Kz|4%LcDVZet>~@tB^!E

literal 0
HcmV?d00001

diff --git a/wolfTPM/.DS_Store b/wolfTPM/.DS_Store
new file mode 100644
index 0000000000000000000000000000000000000000..727ad45fb47623593f1ebeae08161d760fda75b7
GIT binary patch
literal 6148
zcmeHLJ5Iwu5S>jd<N!rV3W~h|MH(s!6PXjFr67r;M97vS5Cs*cpg^MFK-AoUQ&7_K
zW@qsyjwKopLNn6LTg}HadA7XX5Rn<*BqO3B5rt63-T-EcaGbRzJ@45E8h4EaUC|L;
z(llMRveoey8Q^<2pcO4>N(pRv|3;H}o~_-;ySES9v$8ynXK6k|G`v4QJbrn9J?+X&
zzL~jR)jL1)0DZc~T=R5Ui<sc8iqz-$cq-@cby;5ZZbuvaOvL?mq~F(*T<>}^-i+6K
zKi-wS8`r2$(3R7iLx|^LRFnZ_KpFS}2C!$dgnNQ&l>ucy87LXx_k)EpMji`6_v(Og
zM*v^|w-c=SEWtI_W8|?AL<C}_6ey*}A2E!S!*6|F<gpNxax$(nuH!o!e?l>?JN(wA
zlYG(1TCFmm3{(vCWjW;i|E&A`Ulr&|8BhlP9RntaCo%uA;rG_o59GbpLNA~!oL2~z
kC0Mwv7`eO^A3&YJZ+QWXJQjlRK=ebv(V#{d_*Diz0fBL9X8-^I

literal 0
HcmV?d00001