settings.h: don't set WOLFSSL_GENSEED_FORTEST.

[philljj]

Description

We should not set WOLFSSL_GENSEED_FORTEST in our settings.h.

It's fine for demo examples, but not in main code.

Fixes F-2623.

[Copilot]

Pull request overview

Removes the unconditional WOLFSSL_GENSEED_FORTEST define from the main settings.h configuration to avoid enabling deterministic RNG seeding in core builds (keeping such behavior limited to demos/examples or explicit user settings).

Changes:

• Removed #define WOLFSSL_GENSEED_FORTEST from the FREERTOS_TCP block in wolfssl/wolfcrypt/settings.h.

Comments suppressed due to low confidence (1)

wolfssl/wolfcrypt/settings.h:1734

• With WOLFSSL_GENSEED_FORTEST removed, the FREERTOS_TCP settings now fall back to the default RNG seeding path in wolfcrypt/src/random.c (POSIX /dev/* + <fcntl.h>/<unistd.h>), which is typically unavailable in FreeRTOS builds. Consider defining NO_DEV_RANDOM here (unless the application overrides it) so FreeRTOS+TCP builds don’t accidentally depend on /dev/random and instead fail fast unless a proper seed source is provided (e.g., crypto callback or custom seed implementation).

    #define NO_WOLFSSL_DIR
    #define NO_WRITEV
    #define TFM_TIMING_RESISTANT
    #define NO_MAIN_DRIVER

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-actions]

MemBrowse Memory Report

No memory changes detected for:

• gcc-arm-cortex-m0plus
• gcc-arm-cortex-m3
• gcc-arm-cortex-m4
• gcc-arm-cortex-m4-baremetal
• gcc-arm-cortex-m4-crypto-only
• gcc-arm-cortex-m4-dtls13
• gcc-arm-cortex-m4-min-ecc
• gcc-arm-cortex-m4-openssl-compat
• gcc-arm-cortex-m4-pkcs7
• gcc-arm-cortex-m4-pq
• gcc-arm-cortex-m4-rsa-only
• gcc-arm-cortex-m4-sp-math
• gcc-arm-cortex-m4-tls12
• gcc-arm-cortex-m4-tls13
• gcc-arm-cortex-m7
• gcc-arm-cortex-m7-pq
• gcc-arm-cortex-m7-tls13
• linuxkm-pie
• linuxkm-standard
• stm32-sim-stm32h753