support --without-openssl at configure time

Disables and removes dependency on OpenSSL. Many features don't work and the set of crypto options is greatly restricted. This will only work on system with native arc4random or /dev/urandom. Considered highly experimental for now.
author: Damien Miller <djm@mindrot.org> 2015-01-15 02:21:31 +1100
committer: Damien Miller <djm@mindrot.org> 2015-01-15 02:28:36 +1100
commit: 72ef7c148c42db7d5632a29f137f8b87b579f2d9 (patch)
tree: 47954a387f4260cc8b1e0ff33bbbaf22fd6f11fc /openbsd-compat/sha2.h
parent: 4f38c61c68ae7e3f9ee4b3c38bc86cd39f65ece9 (diff)
1 files changed, 10 insertions, 9 deletions
diff --git a/openbsd-compat/sha2.h b/openbsd-compat/sha2.h
index 73e94f150..c8bfc3cd1 100644
--- a/openbsd-compat/sha2.h
+++ b/openbsd-compat/sha2.h
@@ -41,10 +41,16 @@
 #include "includes.h"
-#include <openssl/opensslv.h>
+#ifdef WITH_OPENSSL
+# include <openssl/opensslv.h>
+# if !defined(HAVE_EVP_SHA256) && (OPENSSL_VERSION_NUMBER >= 0x00907000L)
+#  define _NEED_SHA2 1
+# endif
+#else
+# define _NEED_SHA2 1
+#endif
-#if !defined(HAVE_EVP_SHA256) && !defined(HAVE_SHA256_UPDATE) && \
+#if defined(_NEED_SHA2) && !defined(HAVE_SHA256_UPDATE)
-    (OPENSSL_VERSION_NUMBER >= 0x00907000L)
 /*** SHA-256/384/512 Various Length Definitions ***********************/
 #define SHA256_BLOCK_LENGTH             64
@@ -70,9 +76,7 @@ typedef struct _SHA512_CTX {
        u_int8_t        buffer[SHA512_BLOCK_LENGTH];
 } SHA512_CTX;
-#if 0
 typedef SHA512_CTX SHA384_CTX;
-#endif
 void SHA256_Init(SHA256_CTX *);
 void SHA256_Transform(u_int32_t state[8], const u_int8_t [SHA256_BLOCK_LENGTH]);
@@ -91,7 +95,6 @@ char *SHA256_Data(const u_int8_t *, size_t, char *)
        __attribute__((__bounded__(__string__,1,2)))
        __attribute__((__bounded__(__minbytes__,3,SHA256_DIGEST_STRING_LENGTH)));
-#if 0
 void SHA384_Init(SHA384_CTX *);
 void SHA384_Transform(u_int64_t state[8], const u_int8_t [SHA384_BLOCK_LENGTH]);
 void SHA384_Update(SHA384_CTX *, const u_int8_t *, size_t)
@@ -108,7 +111,6 @@ char *SHA384_FileChunk(const char *, char *, off_t, off_t)
 char *SHA384_Data(const u_int8_t *, size_t, char *)
        __attribute__((__bounded__(__string__,1,2)))
        __attribute__((__bounded__(__minbytes__,3,SHA384_DIGEST_STRING_LENGTH)));
-#endif /* 0 */
 void SHA512_Init(SHA512_CTX *);
 void SHA512_Transform(u_int64_t state[8], const u_int8_t [SHA512_BLOCK_LENGTH]);
@@ -127,7 +129,6 @@ char *SHA512_Data(const u_int8_t *, size_t, char *)
        __attribute__((__bounded__(__string__,1,2)))
        __attribute__((__bounded__(__minbytes__,3,SHA512_DIGEST_STRING_LENGTH)));
-#endif /* !defined(HAVE_EVP_SHA256) && !defined(HAVE_SHA256_UPDATE) && \
+#endif /* defined(_NEED_SHA2) && !defined(HAVE_SHA256_UPDATE) */
-    (OPENSSL_VERSION_NUMBER >= 0x00907000L) */
 #endif /* _SSHSHA2_H */
author	Damien Miller <djm@mindrot.org>	2015-01-15 02:21:31 +1100
committer	Damien Miller <djm@mindrot.org>	2015-01-15 02:28:36 +1100
commit	72ef7c148c42db7d5632a29f137f8b87b579f2d9 (patch)
tree	47954a387f4260cc8b1e0ff33bbbaf22fd6f11fc /openbsd-compat/sha2.h
parent	4f38c61c68ae7e3f9ee4b3c38bc86cd39f65ece9 (diff)