Introduce IDE-FIPS directory

[gojimmypi]

Description

Upon reconsideration after the merge of #8090, I think it would be best to move all project files to the respective IDE/<environment> directory, out of the respective source directories such as wolfcrypt/benchmark.

Additionally, it may be best to isolate FIPS and non-FIPS environments.

This PR proposes a new IDE-FIPS for all the FIPS-related builds in preparation for the moves.

Fixes zd# n/a

Testing

Not tested.

Checklist

• added tests
• updated/added doxygen
• updated appropriate READMEs
• Updated manual and documentation

[gojimmypi]

Jenkins retest this please

[kaleb-himes]

Excellent prep work on getting the transition space ready @gojimmypi, thank you!

[douzzer]

I think it may be an unforced error to separate FIPS from non-FIPS artifacts for a given IDE.

My thinking is that the big variable here is the IDE, not FIPSness, and we go to a lot of trouble to assure that things work the same API-wise, FIPS vs non-FIPS, modulo the reduced set of available crypto algorithms.

I could be convinced otherwise, but currently I find it more intuitive to have side-by-side FIPS and non-FIPS project files grouped under the same IDE.

[gojimmypi]

My thinking is that the big variable here is the IDE, not FIPSness,

Those are both big variables. The project files are duplicated and suffixed with -FIPS in the same directory. I'm proposing we just clarify which, exact files are needed for FIPS and non-FIPS with no overlap.

we go to a lot of trouble to assure that things work the same API-wise, FIPS vs non-FIPS, modulo the reduced set of available crypto algorithms.

I agree with all points. When I am making non-FIPS changes, for instance, I see the files in IDE/WIN and wonder which are FIPS or not; which may be included, perhaps inadvertently for FIPS and have undesired results? Is test.vcxproj FIPS, non-FIPS, or both?

I see the value in having a common 'user_settings.h`; that's the only key thing to share between FIPS and non-FIPS, eh? Maybe that should have a home of its own and shared between projects?

I think it may be an unforced error to separate FIPS from non-FIPS artifacts for a given IDE.

Curious. Do you have an example? My thoughts here are explicitly stand-alone environments in a clean, exclusive directory. Either it is FIPS or is not for a given IDE.

This is all in the context of my work on Visual Studio project files - in particular my plans to introduce more of them for various different configurations, and remove the others from being embedded in the source.

I could imagine an entire set of various project files all referring to a single, common user_settings.h file location, but not having all the project files cluttering the same directory.

For example: see my WIP wolfSSL Visual Studio cmake project file (wolfssl-VS2022-cmake.vcxproj) for Realm in my osp/realm/VS2022 dev branch and the related wolfssl-GlobalProperties.props file. Should that exact global properties file be referenced by both FIPS and non-FIPS project? I'd say no.

@kaleb-himes @lealem47 what do you think?

[JacobBarthelmeh]

Reviewed these changes. My thinking is more aligned with @douzzer on this. I also think that in most IDE projects there should not be enough of a difference between a FIPS and non-FIPS build to merit a new IDE project. Just build configuration options, possibly linker file changes and handling a couple of FIPS API calls on initialization.

[gojimmypi]

After feedback, I'm closing this unmerged. We can revisit later if there are compelling reasons for separation of IDE project files.