mirror of
https://github.com/wolfSSL/wolfssl.git
synced 2025-07-30 18:57:27 +02:00
feature gating tweaks to better support --disable-rsa --disable-dh --disable-dsa. also a whitespace fix in ssl.c.
This commit is contained in:
Daniel Pouzzner
14
src/ssl.c
14
src/ssl.c
@ -31085,9 +31085,9 @@ void wolfSSL_sk_pop_free(WOLF_STACK_OF(WOLFSSL_ASN1_OBJECT)* sk,
|
|||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
#if defined(WOLFSSL_QT)
|
#if defined(WOLFSSL_QT)
|
||||||
/* In Qt v15.5, it calls OPENSSL_sk_free(xxx, OPENSSL_sk_free).
|
/* In Qt v15.5, it calls OPENSSL_sk_free(xxx, OPENSSL_sk_free).
|
||||||
* By using OPENSSL_sk_free for free causes access violation.
|
* By using OPENSSL_sk_free for free causes access violation.
|
||||||
* Therefore, switching free func to wolfSSL_ACCESS_DESCRIPTION_free
|
* Therefore, switching free func to wolfSSL_ACCESS_DESCRIPTION_free
|
||||||
* is needed even the func isn't NULL.
|
* is needed even the func isn't NULL.
|
||||||
*/
|
*/
|
||||||
if (sk->type == STACK_TYPE_ACCESS_DESCRIPTION) {
|
if (sk->type == STACK_TYPE_ACCESS_DESCRIPTION) {
|
||||||
@ -52578,7 +52578,7 @@ int wolfSSL_BN_div(WOLFSSL_BIGNUM* dv, WOLFSSL_BIGNUM* rem,
|
|||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
||||||
#ifdef WOLFSSL_KEY_GEN /* Needed to get mp_gcd. */
|
#if !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN) /* Needed to get mp_gcd. */
|
||||||
int wolfSSL_BN_gcd(WOLFSSL_BIGNUM* r, WOLFSSL_BIGNUM* a, WOLFSSL_BIGNUM* b,
|
int wolfSSL_BN_gcd(WOLFSSL_BIGNUM* r, WOLFSSL_BIGNUM* a, WOLFSSL_BIGNUM* b,
|
||||||
WOLFSSL_BN_CTX* ctx)
|
WOLFSSL_BN_CTX* ctx)
|
||||||
{
|
{
|
||||||
@ -52608,7 +52608,7 @@ int wolfSSL_BN_gcd(WOLFSSL_BIGNUM* r, WOLFSSL_BIGNUM* a, WOLFSSL_BIGNUM* b,
|
|||||||
|
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
#endif /* WOLFSSL_KEY_GEN */
|
#endif /* !NO_RSA && WOLFSSL_KEY_GEN */
|
||||||
|
|
||||||
/* WOLFSSL_SUCCESS on ok */
|
/* WOLFSSL_SUCCESS on ok */
|
||||||
int wolfSSL_BN_mod(WOLFSSL_BIGNUM* r, const WOLFSSL_BIGNUM* a,
|
int wolfSSL_BN_mod(WOLFSSL_BIGNUM* r, const WOLFSSL_BIGNUM* a,
|
||||||
@ -53618,7 +53618,7 @@ int wolfSSL_BN_mod_add(WOLFSSL_BIGNUM *r, const WOLFSSL_BIGNUM *a,
|
|||||||
return WOLFSSL_SUCCESS;
|
return WOLFSSL_SUCCESS;
|
||||||
}
|
}
|
||||||
|
|
||||||
#ifdef WOLFSSL_KEY_GEN
|
#if defined(WOLFSSL_KEY_GEN) && (!defined(NO_RSA) || !defined(NO_DH) || !defined(NO_DSA))
|
||||||
|
|
||||||
int wolfSSL_BN_generate_prime_ex(WOLFSSL_BIGNUM* prime, int bits,
|
int wolfSSL_BN_generate_prime_ex(WOLFSSL_BIGNUM* prime, int bits,
|
||||||
int safe, const WOLFSSL_BIGNUM* add, const WOLFSSL_BIGNUM* rem,
|
int safe, const WOLFSSL_BIGNUM* add, const WOLFSSL_BIGNUM* rem,
|
||||||
@ -53785,7 +53785,7 @@ WOLFSSL_BN_ULONG wolfSSL_BN_mod_word(const WOLFSSL_BIGNUM *bn,
|
|||||||
|
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
#endif /* #ifdef WOLFSSL_KEY_GEN */
|
#endif /* WOLFSSL_KEY_GEN && (!NO_RSA || !NO_DH || !NO_DSA) */
|
||||||
|
|
||||||
char *wolfSSL_BN_bn2hex(const WOLFSSL_BIGNUM *bn)
|
char *wolfSSL_BN_bn2hex(const WOLFSSL_BIGNUM *bn)
|
||||||
{
|
{
|
||||||
|
|||||||
16
tests/api.c
16
tests/api.c
@ -6171,7 +6171,7 @@ done:
|
|||||||
|
|
||||||
static void test_wolfSSL_get_finished(void)
|
static void test_wolfSSL_get_finished(void)
|
||||||
{
|
{
|
||||||
#if defined(OPENSSL_ALL) || defined(WOLFSSL_HAPROXY) || defined(WOLFSSL_WPAS)
|
#if !defined(NO_RSA) && defined(OPENSSL_ALL) || defined(WOLFSSL_HAPROXY) || defined(WOLFSSL_WPAS)
|
||||||
|
|
||||||
tcp_ready ready;
|
tcp_ready ready;
|
||||||
func_args client_args;
|
func_args client_args;
|
||||||
@ -26397,6 +26397,7 @@ static int test_wc_EccPrivateKeyToDer (void)
|
|||||||
static int test_wc_DhPublicKeyDecode(void)
|
static int test_wc_DhPublicKeyDecode(void)
|
||||||
{
|
{
|
||||||
int ret = 0;
|
int ret = 0;
|
||||||
|
#ifndef NO_DH
|
||||||
word32 inOutIdx;
|
word32 inOutIdx;
|
||||||
|
|
||||||
#if defined(WOLFSSL_DH_EXTRA) && defined(USE_CERT_BUFFERS_2048)
|
#if defined(WOLFSSL_DH_EXTRA) && defined(USE_CERT_BUFFERS_2048)
|
||||||
@ -26427,6 +26428,7 @@ static int test_wc_DhPublicKeyDecode(void)
|
|||||||
|
|
||||||
#endif
|
#endif
|
||||||
(void)inOutIdx;
|
(void)inOutIdx;
|
||||||
|
#endif /* !NO_DH */
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -33759,7 +33761,8 @@ static void test_wolfSSL_Tls13_Key_Logging_test(void)
|
|||||||
#endif /* OPENSSL_EXTRA && HAVE_SECRET_CALLBACK && WOLFSSL_TLS13 */
|
#endif /* OPENSSL_EXTRA && HAVE_SECRET_CALLBACK && WOLFSSL_TLS13 */
|
||||||
}
|
}
|
||||||
|
|
||||||
#if defined(OPENSSL_EXTRA) && !defined(NO_CERTS) && \
|
#if defined(HAVE_IO_TESTS_DEPENDENCIES) && \
|
||||||
|
defined(OPENSSL_EXTRA) && !defined(NO_CERTS) && \
|
||||||
defined(WOLFSSL_TLS13) && defined(WOLFSSL_POST_HANDSHAKE_AUTH)
|
defined(WOLFSSL_TLS13) && defined(WOLFSSL_POST_HANDSHAKE_AUTH)
|
||||||
static void post_auth_version_cb(WOLFSSL* ssl)
|
static void post_auth_version_cb(WOLFSSL* ssl)
|
||||||
{
|
{
|
||||||
@ -33799,7 +33802,8 @@ static void set_post_auth_cb(WOLFSSL* ssl)
|
|||||||
|
|
||||||
static void test_wolfSSL_Tls13_postauth(void)
|
static void test_wolfSSL_Tls13_postauth(void)
|
||||||
{
|
{
|
||||||
#if defined(OPENSSL_EXTRA) && !defined(NO_CERTS) && \
|
#if defined(HAVE_IO_TESTS_DEPENDENCIES) && \
|
||||||
|
defined(OPENSSL_EXTRA) && !defined(NO_CERTS) && \
|
||||||
defined(WOLFSSL_TLS13) && defined(WOLFSSL_POST_HANDSHAKE_AUTH)
|
defined(WOLFSSL_TLS13) && defined(WOLFSSL_POST_HANDSHAKE_AUTH)
|
||||||
tcp_ready ready;
|
tcp_ready ready;
|
||||||
func_args client_args;
|
func_args client_args;
|
||||||
@ -34304,14 +34308,14 @@ static void test_wolfSSL_BN(void)
|
|||||||
AssertIntEQ(BN_set_word(a, 16), SSL_SUCCESS);
|
AssertIntEQ(BN_set_word(a, 16), SSL_SUCCESS);
|
||||||
AssertIntEQ(BN_set_word(b, 24), SSL_SUCCESS);
|
AssertIntEQ(BN_set_word(b, 24), SSL_SUCCESS);
|
||||||
|
|
||||||
#ifdef WOLFSSL_KEY_GEN
|
#if !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN)
|
||||||
/* gcd of a and b */
|
/* gcd of a and b */
|
||||||
AssertIntEQ(BN_gcd(d, NULL, b, NULL), SSL_FAILURE);
|
AssertIntEQ(BN_gcd(d, NULL, b, NULL), SSL_FAILURE);
|
||||||
AssertIntEQ(BN_gcd(d, a, b, NULL), SSL_SUCCESS);
|
AssertIntEQ(BN_gcd(d, a, b, NULL), SSL_SUCCESS);
|
||||||
|
|
||||||
/* check result gcd(16, 24) */
|
/* check result gcd(16, 24) */
|
||||||
AssertIntEQ(BN_get_word(d), 8);
|
AssertIntEQ(BN_get_word(d), 8);
|
||||||
#endif /* WOLFSSL_KEY_GEN */
|
#endif /* !NO_RSA && WOLFSSL_KEY_GEN */
|
||||||
|
|
||||||
AssertIntEQ(BN_set_word(a, 1 << 6), SSL_SUCCESS);
|
AssertIntEQ(BN_set_word(a, 1 << 6), SSL_SUCCESS);
|
||||||
AssertIntEQ(BN_rshift(b, a, 6), SSL_SUCCESS);
|
AssertIntEQ(BN_rshift(b, a, 6), SSL_SUCCESS);
|
||||||
@ -34417,7 +34421,7 @@ static void test_wolfSSL_BN(void)
|
|||||||
}
|
}
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#ifdef WOLFSSL_KEY_GEN
|
#if defined(WOLFSSL_KEY_GEN) && (!defined(NO_RSA) || !defined(NO_DH) || !defined(NO_DSA))
|
||||||
AssertNotNull(a = BN_new());
|
AssertNotNull(a = BN_new());
|
||||||
AssertIntEQ(BN_generate_prime_ex(a, 512, 0, NULL, NULL, NULL),
|
AssertIntEQ(BN_generate_prime_ex(a, 512, 0, NULL, NULL, NULL),
|
||||||
SSL_SUCCESS);
|
SSL_SUCCESS);
|
||||||
|
|||||||
@ -2254,7 +2254,7 @@ static int DH_param_check(WOLFSSL_DH* dh_key)
|
|||||||
WOLFSSL_MSG("dh_key->g is not suitable generator");
|
WOLFSSL_MSG("dh_key->g is not suitable generator");
|
||||||
ret = WOLFSSL_FAILURE;
|
ret = WOLFSSL_FAILURE;
|
||||||
}
|
}
|
||||||
#ifdef WOLFSSL_KEY_GEN
|
#if !defined(NO_RSA) && defined(WOLFSSL_KEY_GEN)
|
||||||
/* test if the number q is prime. */
|
/* test if the number q is prime. */
|
||||||
if (ret == WOLFSSL_SUCCESS &&
|
if (ret == WOLFSSL_SUCCESS &&
|
||||||
(wolfSSL_BN_is_prime_ex(dh_key->q, 64, ctx, NULL) <= 0)) {
|
(wolfSSL_BN_is_prime_ex(dh_key->q, 64, ctx, NULL) <= 0)) {
|
||||||
|
|||||||
@ -34440,7 +34440,7 @@ WOLFSSL_TEST_SUBROUTINE int pkcs7signed_test(void)
|
|||||||
eccClientCertBuf, (word32)eccClientCertBufSz,
|
eccClientCertBuf, (word32)eccClientCertBufSz,
|
||||||
eccClientPrivKeyBuf, (word32)eccClientPrivKeyBufSz);
|
eccClientPrivKeyBuf, (word32)eccClientPrivKeyBufSz);
|
||||||
|
|
||||||
#if !defined(NO_AES) && defined(HAVE_AES_CBC)
|
#if !defined(NO_RSA) && !defined(NO_AES) && defined(HAVE_AES_CBC)
|
||||||
if (ret >= 0)
|
if (ret >= 0)
|
||||||
ret = pkcs7callback_test(
|
ret = pkcs7callback_test(
|
||||||
rsaClientCertBuf, (word32)rsaClientCertBufSz,
|
rsaClientCertBuf, (word32)rsaClientCertBufSz,
|
||||||
|
|||||||
@ -72,8 +72,10 @@ WOLFSSL_API int wolfSSL_BN_mul(WOLFSSL_BIGNUM*, WOLFSSL_BIGNUM*,
|
|||||||
WOLFSSL_BIGNUM*, WOLFSSL_BN_CTX*);
|
WOLFSSL_BIGNUM*, WOLFSSL_BN_CTX*);
|
||||||
WOLFSSL_API int wolfSSL_BN_div(WOLFSSL_BIGNUM*, WOLFSSL_BIGNUM*,
|
WOLFSSL_API int wolfSSL_BN_div(WOLFSSL_BIGNUM*, WOLFSSL_BIGNUM*,
|
||||||
const WOLFSSL_BIGNUM*, const WOLFSSL_BIGNUM*, WOLFSSL_BN_CTX*);
|
const WOLFSSL_BIGNUM*, const WOLFSSL_BIGNUM*, WOLFSSL_BN_CTX*);
|
||||||
|
#if defined(WOLFSSL_KEY_GEN) && !defined(NO_RSA)
|
||||||
WOLFSSL_API int wolfSSL_BN_gcd(WOLFSSL_BIGNUM*, WOLFSSL_BIGNUM*,
|
WOLFSSL_API int wolfSSL_BN_gcd(WOLFSSL_BIGNUM*, WOLFSSL_BIGNUM*,
|
||||||
WOLFSSL_BIGNUM*, WOLFSSL_BN_CTX*);
|
WOLFSSL_BIGNUM*, WOLFSSL_BN_CTX*);
|
||||||
|
#endif
|
||||||
WOLFSSL_API int wolfSSL_BN_mod(WOLFSSL_BIGNUM*, const WOLFSSL_BIGNUM*,
|
WOLFSSL_API int wolfSSL_BN_mod(WOLFSSL_BIGNUM*, const WOLFSSL_BIGNUM*,
|
||||||
const WOLFSSL_BIGNUM*, const WOLFSSL_BN_CTX*);
|
const WOLFSSL_BIGNUM*, const WOLFSSL_BN_CTX*);
|
||||||
WOLFSSL_API int wolfSSL_BN_mod_exp(WOLFSSL_BIGNUM *r, const WOLFSSL_BIGNUM *a,
|
WOLFSSL_API int wolfSSL_BN_mod_exp(WOLFSSL_BIGNUM *r, const WOLFSSL_BIGNUM *a,
|
||||||
@ -130,12 +132,14 @@ WOLFSSL_API int wolfSSL_BN_mod_add(WOLFSSL_BIGNUM *r, const WOLFSSL_BIGNUM *a,
|
|||||||
const WOLFSSL_BIGNUM *b, const WOLFSSL_BIGNUM *m,
|
const WOLFSSL_BIGNUM *b, const WOLFSSL_BIGNUM *m,
|
||||||
WOLFSSL_BN_CTX *ctx);
|
WOLFSSL_BN_CTX *ctx);
|
||||||
WOLFSSL_API char *wolfSSL_BN_bn2hex(const WOLFSSL_BIGNUM*);
|
WOLFSSL_API char *wolfSSL_BN_bn2hex(const WOLFSSL_BIGNUM*);
|
||||||
|
#if defined(WOLFSSL_KEY_GEN) && (!defined(NO_RSA) || !defined(NO_DH) || !defined(NO_DSA))
|
||||||
WOLFSSL_API int wolfSSL_BN_generate_prime_ex(WOLFSSL_BIGNUM*, int, int,
|
WOLFSSL_API int wolfSSL_BN_generate_prime_ex(WOLFSSL_BIGNUM*, int, int,
|
||||||
const WOLFSSL_BIGNUM*, const WOLFSSL_BIGNUM*, WOLFSSL_BN_GENCB*);
|
const WOLFSSL_BIGNUM*, const WOLFSSL_BIGNUM*, WOLFSSL_BN_GENCB*);
|
||||||
WOLFSSL_API int wolfSSL_BN_is_prime_ex(const WOLFSSL_BIGNUM*, int,
|
WOLFSSL_API int wolfSSL_BN_is_prime_ex(const WOLFSSL_BIGNUM*, int,
|
||||||
WOLFSSL_BN_CTX*, WOLFSSL_BN_GENCB*);
|
WOLFSSL_BN_CTX*, WOLFSSL_BN_GENCB*);
|
||||||
WOLFSSL_API WOLFSSL_BN_ULONG wolfSSL_BN_mod_word(const WOLFSSL_BIGNUM*,
|
WOLFSSL_API WOLFSSL_BN_ULONG wolfSSL_BN_mod_word(const WOLFSSL_BIGNUM*,
|
||||||
WOLFSSL_BN_ULONG);
|
WOLFSSL_BN_ULONG);
|
||||||
|
#endif
|
||||||
#if !defined(NO_FILESYSTEM) && !defined(NO_STDIO_FILESYSTEM)
|
#if !defined(NO_FILESYSTEM) && !defined(NO_STDIO_FILESYSTEM)
|
||||||
WOLFSSL_API int wolfSSL_BN_print_fp(XFILE, const WOLFSSL_BIGNUM*);
|
WOLFSSL_API int wolfSSL_BN_print_fp(XFILE, const WOLFSSL_BIGNUM*);
|
||||||
#endif
|
#endif
|
||||||
|
|||||||
Reference in New Issue
Block a user