[03/16] sslapi: Move CMS-only functions to conditional

Message ID	20200916135825.40367-4-bage@linutronix.de
State	Accepted
Headers	show Return-Path: <swupdate+bncBDPPPP7KYILBBDNURD5QKGQEIRLDIHI@googlegroups.com> Sender: swupdate@googlegroups.com Received-SPF: pass (google.com: domain of bage@linutronix.de designates 2a0a:51c0:0:12e:550::1 as permitted sender) client-ip=2a0a:51c0:0:12e:550::1; From: bage@linutronix.de To: swupdate@googlegroups.com Cc: Bastian Germann <bage@linutronix.de>, Torben Hohn <torben.hohn@linutronix.de> Subject: [swupdate] [PATCH 03/16] sslapi: Move CMS-only functions to conditional Date: Wed, 16 Sep 2020 15:58:12 +0200 Message-Id: <20200916135825.40367-4-bage@linutronix.de> In-Reply-To: <20200916135825.40367-1-bage@linutronix.de> References: <20200916135825.40367-1-bage@linutronix.de> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Precedence: list Mailing-list: list swupdate@googlegroups.com; contact swupdate+owners@googlegroups.com
Series	wolfssl SSL impl, PKCS#11 AES, AES key len \| expand [00/16] wolfssl SSL impl, PKCS#11 AES, AES key len [01/16] Kbuild: Add wolfSSL as SSL implementation [02/16] Rename wolfSSL incompatible definition [03/16] sslapi: Move CMS-only functions to conditional [04/16] sslapi: Add X509 related wolfSSL definitions [05/16] Makefile.flags: Add missing wolfSSL definitions [06/16] mongoose: Hide deprecated function for wolfSSL [07/16] sslapi: Add wolfSSL compatibility macro [08/16] pkcs11: Implement based on wolfSSL and p11-kit [09/16] Kbuild: Add PKCS11 option [10/16] pkcs11: Differentiate key handling based on config [11/16] doc: Add note on the PKCS#11 libraries [12/16] doc: encrypted images: Add a PKCS#11 section [13/16] encrypted images: Accept other AES key lengths [14/16] encrypted images: Implement other key lengths in providers [15/16] doc: encrypted images: Using different key lenghts [16/16] encrypted images: Test other key lengths

Message ID

20200916135825.40367-4-bage@linutronix.de

State

Accepted

Headers

Sender: swupdate@googlegroups.com
Received-SPF: pass (google.com: domain of bage@linutronix.de designates
 2a0a:51c0:0:12e:550::1 as permitted sender) client-ip=2a0a:51c0:0:12e:550::1;
From: bage@linutronix.de
To: swupdate@googlegroups.com
Cc: Bastian Germann <bage@linutronix.de>,
	Torben Hohn <torben.hohn@linutronix.de>
Subject: [swupdate] [PATCH 03/16] sslapi: Move CMS-only functions to
 conditional
Date: Wed, 16 Sep 2020 15:58:12 +0200
Message-Id: <20200916135825.40367-4-bage@linutronix.de>
In-Reply-To: <20200916135825.40367-1-bage@linutronix.de>
References: <20200916135825.40367-1-bage@linutronix.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Precedence: list
Mailing-list: list swupdate@googlegroups.com;
 contact swupdate+owners@googlegroups.com

Series

wolfssl SSL impl, PKCS#11 AES, AES key len | expand

Commit Message

Bastian Germann Sept. 16, 2020, 1:58 p.m. UTC

From: Bastian Germann <bage@linutronix.de>

The SSL_X509_get_exten* functions are only used by the CMS implementation.
Move them to the CMS conditional area to be compatible with wolfSSL.

Signed-off-by: Bastian Germann <bage@linutronix.de>
Reviewed-by: Torben Hohn <torben.hohn@linutronix.de>
---
 include/sslapi.h | 38 +++++++++++++++++++-------------------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/include/sslapi.h b/include/sslapi.h
index dbdffa0..14e4397 100644
--- a/include/sslapi.h
+++ b/include/sslapi.h
@@ -28,16 +28,34 @@ 
 #include <openssl/evp.h>
 #include <openssl/hmac.h>
 #include <openssl/aes.h>
+#include <openssl/opensslv.h>
 
 #ifdef CONFIG_SIGALG_CMS
 #if defined(LIBRESSL_VERSION_NUMBER)
 #error "LibreSSL does not support CMS, please select RSA PKCS"
 #else
 #include <openssl/cms.h>
+
+static inline uint32_t SSL_X509_get_extension_flags(X509 *x)
+{
+#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
+	return x->ex_flags;
+#else
+	return X509_get_extension_flags(x);
 #endif
+}
+
+static inline uint32_t SSL_X509_get_extended_key_usage(X509 *x)
+{
+#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
+	return x->ex_xkusage;
+#else
+	return X509_get_extended_key_usage(x);
 #endif
+}
 
-#include <openssl/opensslv.h>
+#endif
+#endif /* CONFIG_SIGALG_CMS */
 
 #define X509_PURPOSE_CODE_SIGN (X509_PURPOSE_MAX + 1)
 #define SSL_PURPOSE_EMAIL_PROT X509_PURPOSE_SMIME_SIGN
@@ -79,24 +97,6 @@  struct swupdate_digest {
 #define swupdate_crypto_init()
 #endif
 
-static inline uint32_t SSL_X509_get_extension_flags(X509 *x)
-{
-#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
-	return x->ex_flags;
-#else
-	return X509_get_extension_flags(x);
-#endif
-}
-
-static inline uint32_t SSL_X509_get_extended_key_usage(X509 *x)
-{
-#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
-	return x->ex_xkusage;
-#else
-	return X509_get_extended_key_usage(x);
-#endif
-}
-
 #elif defined(CONFIG_SSL_IMPL_MBEDTLS)
 #include <mbedtls/md.h>
 #include <mbedtls/pk.h>

[03/16] sslapi: Move CMS-only functions to conditional

Commit Message

Patch