From 6a0bc995a09bcf6c3f96915b2fbba161998a96da Mon Sep 17 00:00:00 2001
From: Hayden Roche <hayden@wolfssl.com>
Date: Mon, 27 Sep 2021 16:08:04 -0700
Subject: [PATCH] Don't compile wolfSSL_EC_POINT_is_on_curve for FIPS.

This function uses wc_ecc_point_is_on_curve, which isn't in the current (v2)
FIPS module.
---
 src/ssl.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/ssl.c b/src/ssl.c
index cdbd8bb8b..21b6c3000 100644
--- a/src/ssl.c
+++ b/src/ssl.c
@@ -37181,7 +37181,8 @@ WOLFSSL_BIGNUM *wolfSSL_EC_POINT_point2bn(const WOLFSSL_EC_GROUP *group,
     return ret;
 }
 
-#ifdef USE_ECC_B_PARAM
+#if defined(USE_ECC_B_PARAM) && (!defined(HAVE_FIPS) || \
+    (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2)))
 int wolfSSL_EC_POINT_is_on_curve(const WOLFSSL_EC_GROUP *group,
                                  const WOLFSSL_EC_POINT *point,
                                  WOLFSSL_BN_CTX *ctx)
@@ -37202,7 +37203,7 @@ int wolfSSL_EC_POINT_is_on_curve(const WOLFSSL_EC_GROUP *group,
     return wc_ecc_point_is_on_curve((ecc_point*)point->internal, group->curve_idx)
             == MP_OKAY ? WOLFSSL_SUCCESS : WOLFSSL_FAILURE;
 }
-#endif /* USE_ECC_B_PARAM */
+#endif /* USE_ECC_B_PARAM && (!HAVE_FIPS || HAVE_FIPS_VERSION > 2) */
 
 WOLFSSL_EC_POINT *wolfSSL_EC_POINT_new(const WOLFSSL_EC_GROUP *group)
 {