From 39f361466bbcaf012518cd90de73ebf6fdc78545 Mon Sep 17 00:00:00 2001
From: Daniel Otte <d.otte@wut.de>
Date: Mon, 1 Feb 2021 14:23:30 +0100
Subject: [PATCH] avoid errorneous computation of RSA_PRV_DER_MAX_BYTES if
 MBEDTLS_MPI_MAX_SIZE is odd.

if MBEDTLS_MPI_MAX_SIZE is odd then RSA_PRV_DER_MAX_BYTES will be two less than expected, since the macros are lacking parentheses.


Signed-off-by: Daniel Otte <d.otte@wut.de>
---
 library/pkwrite.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/library/pkwrite.c b/library/pkwrite.c
index 0da369818..f46d486c0 100644
--- a/library/pkwrite.c
+++ b/library/pkwrite.c
@@ -504,8 +504,8 @@ int mbedtls_pk_write_key_der( mbedtls_pk_context *key, unsigned char *buf, size_
  *      otherPrimeInfos   OtherPrimeInfos OPTIONAL  0 (not supported)
  *  }
  */
-#define MPI_MAX_SIZE_2          MBEDTLS_MPI_MAX_SIZE / 2 + \
-                                MBEDTLS_MPI_MAX_SIZE % 2
+#define MPI_MAX_SIZE_2          ( MBEDTLS_MPI_MAX_SIZE / 2 + \
+                                  MBEDTLS_MPI_MAX_SIZE % 2 )
 #define RSA_PRV_DER_MAX_BYTES   47 + 3 * MBEDTLS_MPI_MAX_SIZE \
                                    + 5 * MPI_MAX_SIZE_2