Some no-ec fixes (not complete yet).

author Dr. Stephen Henson <steve@openssl.org>

Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)
diff --git a/crypto/dh/dh_pmeth.c b/crypto/dh/dh_pmeth.c

index 392d30d166081a7e7ab9668bd90a1950cc9ffa13..5ae72b7d4cc271481279309140fb6b976fd365d3 100644 (file)
--- a/crypto/dh/dh_pmeth.c
+++ b/crypto/dh/dh_pmeth.c
@@ -59,7 +59,6 @@
  #include "cryptlib.h"
  #include <openssl/asn1t.h>
  #include <openssl/x509.h>
-#include <openssl/rsa.h>
  #include <openssl/evp.h>
  #include <openssl/dh.h>
  #include <openssl/bn.h>
diff --git a/ssl/s3_lib.c b/ssl/s3_lib.c

index 73a573ee29f31216d02207fd03db76192461509a..51ec94b5b17226a1e79d5cd2d26ee4926aefd40d 100644 (file)
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c
@@ -2821,13 +2821,11 @@ SSL_CIPHER *ssl3_choose_cipher(SSL *s, STACK_OF(SSL_CIPHER) *clnt,
         SSL_CIPHER *c,*ret=NULL;
         STACK_OF(SSL_CIPHER) *prio, *allow;
         int i,ii,ok;
-#ifndef OPENSSL_NO_TLSEXT
+#if !defined(OPENSSL_NO_TLSEXT) && !defined(OPENSSL_NO_EC)
         unsigned int j;
-#ifndef OPENSSL_NO_EC
         int ec_ok, ec_nid;
         unsigned char ec_search1 = 0, ec_search2 = 0;
-#endif /* OPENSSL_NO_EC */
-#endif /* OPENSSL_NO_TLSEXT */
+#endif
         CERT *cert;
         unsigned long alg_k,alg_a,mask_k,mask_a,emask_k,emask_a;
  
diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c

index f305bc7b368d9940f082593842cae48428bc5caa..2ad60fe649f1cf87e2961affaa4eeda394b98452 100644 (file)
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -1966,6 +1966,8 @@ void ssl_set_cert_masks(CERT *c, const SSL_CIPHER *cipher)
  #define ku_reject(x, usage) \
         (((x)->ex_flags & EXFLAG_KUSAGE) && !((x)->ex_kusage & (usage)))
  
+#ifndef OPENSSL_NO_EC
+
  int ssl_check_srvr_ecc_cert_and_alg(X509 *x, const SSL_CIPHER *cs)
         {
         unsigned long alg_k, alg_a;
@@ -2037,6 +2039,8 @@ int ssl_check_srvr_ecc_cert_and_alg(X509 *x, const SSL_CIPHER *cs)
         return 1;  /* all checks are ok */
         }
  
+#endif
+
  /* THIS NEEDS CLEANING UP */
  X509 *ssl_get_server_send_cert(SSL *s)
         {
author	Dr. Stephen Henson <steve@openssl.org>
	Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)
crypto/dh/dh_pmeth.c		patch \| blob \| history
ssl/s3_lib.c		patch \| blob \| history
ssl/ssl_lib.c		patch \| blob \| history