diff options
| author | Damien Miller <djm@mindrot.org> | 2015-01-15 02:21:31 +1100 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2015-01-15 02:28:36 +1100 |
| commit | 72ef7c148c42db7d5632a29f137f8b87b579f2d9 (patch) | |
| tree | 47954a387f4260cc8b1e0ff33bbbaf22fd6f11fc /kexecdhs.c | |
| parent | 4f38c61c68ae7e3f9ee4b3c38bc86cd39f65ece9 (diff) | |
support --without-openssl at configure time
Disables and removes dependency on OpenSSL. Many features don't
work and the set of crypto options is greatly restricted. This
will only work on system with native arc4random or /dev/urandom.
Considered highly experimental for now.
Diffstat (limited to 'kexecdhs.c')
| -rw-r--r-- | kexecdhs.c | 12 |
1 files changed, 3 insertions, 9 deletions
diff --git a/kexecdhs.c b/kexecdhs.c index 2700b7219..48bc56dc6 100644 --- a/kexecdhs.c +++ b/kexecdhs.c | |||
| @@ -26,6 +26,8 @@ | |||
| 26 | 26 | ||
| 27 | #include "includes.h" | 27 | #include "includes.h" |
| 28 | 28 | ||
| 29 | #if defined(WITH_OPENSSL) && defined(OPENSSL_HAS_ECC) | ||
| 30 | |||
| 29 | #include <sys/types.h> | 31 | #include <sys/types.h> |
| 30 | #include <string.h> | 32 | #include <string.h> |
| 31 | #include <signal.h> | 33 | #include <signal.h> |
| @@ -39,8 +41,6 @@ | |||
| 39 | #include "packet.h" | 41 | #include "packet.h" |
| 40 | #include "ssh2.h" | 42 | #include "ssh2.h" |
| 41 | 43 | ||
| 42 | #ifdef OPENSSL_HAS_ECC | ||
| 43 | |||
| 44 | #include <openssl/ecdh.h> | 44 | #include <openssl/ecdh.h> |
| 45 | 45 | ||
| 46 | void | 46 | void |
| @@ -152,10 +152,4 @@ kexecdh_server(Kex *kex) | |||
| 152 | BN_clear_free(shared_secret); | 152 | BN_clear_free(shared_secret); |
| 153 | kex_finish(kex); | 153 | kex_finish(kex); |
| 154 | } | 154 | } |
| 155 | #else /* OPENSSL_HAS_ECC */ | 155 | #endif /* defined(WITH_OPENSSL) && defined(OPENSSL_HAS_ECC) */ |
| 156 | void | ||
| 157 | kexecdh_server(Kex *kex) | ||
| 158 | { | ||
| 159 | fatal("ECC support is not enabled"); | ||
| 160 | } | ||
| 161 | #endif /* OPENSSL_HAS_ECC */ | ||