commit fb81c0ec2efbe0ec73990e010ece6be9e9634cae
author Hanno Becker <hanno.becker@arm.com> Thu Aug 24 06:55:11 2017 +0100
committer Hanno Becker <hanno.becker@arm.com> Thu Aug 24 06:55:11 2017 +0100
tree 2af65791a5b5b082b04dae89072257c524db6792
parent b0c5edcc2f7108604c179e68057ffa8e46d51026

Guard primality checks in RSA module by MBEDTLS_GENPRIME

Primality testing is guarded by the configuration flag MBEDTLS_GENPRIME and used in the new RSA helper functions. This
commit adds a corresponding preprocessor directive.

library/rsa.c

diff --git a/library/rsa.c b/library/rsa.c
index 2976b71..72f6610 100644
--- a/library/rsa.c
+++ b/library/rsa.c
@@ -361,6 +361,7 @@
      * Step 1: If PRNG provided, check that P and Q are prime
      */
 
+#if defined(MBEDTLS_GENPRIME)
     if( f_rng != NULL && P != NULL &&
         ( ret = mbedtls_mpi_is_prime( P, f_rng, p_rng ) ) != 0 )
     {
@@ -372,6 +373,10 @@
     {
         goto cleanup;
     }
+#else
+    ((void) f_rng);
+    ((void) p_rng);
+#endif /* MBEDTLS_GENPRIME */
 
     /*
      * Step 2: Check that N = PQ
@@ -571,6 +576,7 @@
     }
     else if( d_missing )
     {
+#if defined(MBEDTLS_GENPRIME)
         /* If a PRNG is provided, check if P, Q are prime. */
         if( f_rng != NULL  &&
             ( ( ret = mbedtls_mpi_is_prime( &ctx->P, f_rng, p_rng ) ) != 0 ||
@@ -578,6 +584,7 @@
         {
             return( MBEDTLS_ERR_RSA_BAD_INPUT_DATA + ret );
         }
+#endif /* MBEDTLS_GENPRIME */
 
         /* Compute N if missing. */
         if( !have_N &&