mirrors
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

add WOLFSSL_NO_DH186 macro to optionally compile out DH186 function

This commit is contained in:
Jacob Barthelmeh 2018-03-20 15:31:20 -06:00
parent df6ea54cd5
commit 4d65e4cc1e
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
wolfcrypt/src/dh.c
View File

@ -568,6 +568,7 @@ void wc_FreeDhKey(DhKey* key)
#endif
#ifndef WOLFSSL_NO_DH186
/* validate that (L,N) match allowed sizes from SP 800-56A, Section 5.5.1.1.
* modLen - represents L, the size of p in bits
* divLen - represents N, the size of q in bits
@ -698,6 +699,7 @@ static int GeneratePrivateDh186(DhKey* key, WC_RNG* rng, byte* priv,
return err;
}
#endif /* WOLFSSL_NO_DH186 */
static int GeneratePrivateDh(DhKey* key, WC_RNG* rng, byte* priv,
@ -706,13 +708,16 @@ static int GeneratePrivateDh(DhKey* key, WC_RNG* rng, byte* priv,
int ret = 0;
word32 sz = 0;
#ifndef WOLFSSL_NO_DH186
if (mp_iszero(&key->q) == MP_NO) {
/* q param available, use NIST FIPS 186-4, "B.1.1 Key Pair
* Generation Using Extra Random Bits" */
ret = GeneratePrivateDh186(key, rng, priv, privSz);
} else {
} else
#endif
{
sz = mp_unsigned_bin_size(&key->p);