20 	if (key->len != 32) {  in aes256_cbc()
21 		fido_log_debug("%s: invalid key len %zu", __func__, key->len);  in aes256_cbc()
24 	if (in->len > UINT_MAX || in->len % 16 || in->len == 0) {  in aes256_cbc()
25 		fido_log_debug("%s: invalid input len %zu", __func__, in->len);  in aes256_cbc()
28 	out->len = in->len;  in aes256_cbc()
29 	if ((out->ptr = calloc(1, out->len)) == NULL) {  in aes256_cbc()
39 	    EVP_Cipher(ctx, out->ptr, in->ptr, (u_int)out->len) < 0) {  in aes256_cbc()
74 	if (secret->len != 64) {  in aes256_cbc_fips()
75 		fido_log_debug("%s: invalid secret len %zu", __func__,  in aes256_cbc_fips()
76 		    secret->len);  in aes256_cbc_fips()
79 	if (in->len < sizeof(iv)) {  in aes256_cbc_fips()
80 		fido_log_debug("%s: invalid input len %zu", __func__, in->len);  in aes256_cbc_fips()
92 		cin.len = in->len - sizeof(iv);  in aes256_cbc_fips()
95 	key.len = secret->len - 32;  in aes256_cbc_fips()
99 		if (cout.len > SIZE_MAX - sizeof(iv) ||  in aes256_cbc_fips()
100 		    (out->ptr = calloc(1, sizeof(iv) + cout.len)) == NULL) {  in aes256_cbc_fips()
104 		out->len = sizeof(iv) + cout.len;  in aes256_cbc_fips()
106 		memcpy(out->ptr + sizeof(iv), cout.ptr, cout.len);  in aes256_cbc_fips()
126 	if (nonce->len != 12 || key->len != 32 || aad->len > UINT_MAX) {  in aes256_gcm()
128 		    nonce->len, key->len, aad->len);  in aes256_gcm()
131 	if (in->len > UINT_MAX || in->len > SIZE_MAX - 16 || in->len < 16) {  in aes256_gcm()
132 		fido_log_debug("%s: invalid input len %zu", __func__, in->len);  in aes256_gcm()
136 	out->len = encrypt ? in->len + 16 : in->len - 16;  in aes256_gcm()
137 	if ((out->ptr = calloc(1, out->len)) == NULL) {  in aes256_gcm()
152 		textlen = in->len;  in aes256_gcm()
154 		textlen = in->len - 16;  in aes256_gcm()
157 		    in->ptr + in->len - 16) == 0) {  in aes256_gcm()
163 	if (EVP_Cipher(ctx, NULL, aad->ptr, (u_int)aad->len) < 0 ||  in aes256_gcm()
172 		    out->ptr + out->len - 16) == 0) {  in aes256_gcm()