1 /* Licensed to the Apache Software Foundation (ASF) under one or more
2 * contributor license agreements. See the NOTICE file distributed with
3 * this work for additional information regarding copyright ownership.
4 * The ASF licenses this file to You under the Apache License, Version 2.0
5 * (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 #ifndef SSL_TOOLKIT_COMPAT_H
18 #define SSL_TOOLKIT_COMPAT_H
21 * this header file provides a compatiblity layer
22 * between OpenSSL and RSA sslc
25 #ifdef OPENSSL_VERSION_NUMBER
28 * rsa sslc uses incomplete types for most structures
29 * so we macroize for OpenSSL those which cannot be dereferenced
30 * using the same sames as the sslc functions
33 #define EVP_PKEY_key_type(k) (EVP_PKEY_type(k->type))
35 #define X509_NAME_get_entries(xs) (xs->entries)
36 #define X509_REVOKED_get_serialNumber(xs) (xs->serialNumber)
38 #define X509_get_signature_algorithm(xs) (xs->cert_info->signature->algorithm)
39 #define X509_get_key_algorithm(xs) (xs->cert_info->key->algor->algorithm)
41 #define X509_NAME_ENTRY_get_data_ptr(xs) (xs->value->data)
42 #define X509_NAME_ENTRY_get_data_len(xs) (xs->value->length)
44 #define SSL_CTX_get_extra_certs(ctx) (ctx->extra_certs)
45 #define SSL_CTX_set_extra_certs(ctx,value) {ctx->extra_certs = value;}
47 #define SSL_CIPHER_get_name(s) (s->name)
48 #define SSL_CIPHER_get_valid(s) (s->valid)
50 #define SSL_SESSION_get_session_id(s) (s->session_id)
51 #define SSL_SESSION_get_session_id_length(s) (s->session_id_length)
54 * Support for retrieving/overriding states
57 #define SSL_get_state(ssl) SSL_state(ssl)
60 #define SSL_set_state(ssl,val) (ssl)->state = val
62 #define MODSSL_BIO_CB_ARG_TYPE const char
63 #define MODSSL_CRYPTO_CB_ARG_TYPE const char
64 #if (OPENSSL_VERSION_NUMBER < 0x00907000)
65 #define MODSSL_INFO_CB_ARG_TYPE SSL*
67 #define MODSSL_INFO_CB_ARG_TYPE const SSL*
69 #define MODSSL_CLIENT_CERT_CB_ARG_TYPE X509
70 #define MODSSL_PCHAR_CAST
72 /* ...shifting sands of openssl... */
73 #if (OPENSSL_VERSION_NUMBER >= 0x0090707f)
74 # define MODSSL_D2I_SSL_SESSION_CONST const
76 # define MODSSL_D2I_SSL_SESSION_CONST
79 #if (OPENSSL_VERSION_NUMBER >= 0x00908000)
80 # define MODSSL_D2I_PrivateKey_CONST const
81 # define MODSSL_D2I_X509_CONST const
83 # define MODSSL_D2I_PrivateKey_CONST
84 # define MODSSL_D2I_X509_CONST
87 #define modssl_X509_verify_cert X509_verify_cert
89 typedef int (modssl_read_bio_cb_fn)(char*,int,int,void*);
91 #if (OPENSSL_VERSION_NUMBER < 0x00904000)
92 #define modssl_PEM_read_bio_X509(b, x, cb, arg) PEM_read_bio_X509(b, x, cb)
94 #define modssl_PEM_read_bio_X509(b, x, cb, arg) PEM_read_bio_X509(b, x, cb, arg)
97 #define modssl_PEM_X509_INFO_read_bio PEM_X509_INFO_read_bio
99 #define modssl_PEM_read_bio_PrivateKey PEM_read_bio_PrivateKey
101 #define modssl_set_cipher_list SSL_set_cipher_list
103 #define modssl_free OPENSSL_free
105 #define EVP_PKEY_reference_inc(pkey) \
106 CRYPTO_add(&((pkey)->references), +1, CRYPTO_LOCK_X509_PKEY)
108 #define X509_reference_inc(cert) \
109 CRYPTO_add(&((cert)->references), +1, CRYPTO_LOCK_X509)
111 #define HAVE_SSL_RAND_EGD /* since 9.5.1 */
113 #ifdef HAVE_SSL_X509V3_H
114 #define HAVE_SSL_X509V3_EXT_d2i
117 #ifndef PEM_F_DEF_CALLBACK
118 #ifdef PEM_F_PEM_DEF_CALLBACK
119 /* In OpenSSL 0.9.8 PEM_F_DEF_CALLBACK was renamed */
120 #define PEM_F_DEF_CALLBACK PEM_F_PEM_DEF_CALLBACK
124 #elif defined (SSLC_VERSION_NUMBER) /* RSA */
126 /* sslc does not support this function, OpenSSL has since 9.5.1 */
127 #define RAND_status() 1
129 /* sslc names this function a bit differently */
130 #define CRYPTO_num_locks() CRYPTO_get_num_locks()
133 #define STACK_OF(type) STACK
136 #define MODSSL_BIO_CB_ARG_TYPE char
137 #define MODSSL_CRYPTO_CB_ARG_TYPE char
138 #define MODSSL_INFO_CB_ARG_TYPE SSL*
139 #define MODSSL_CLIENT_CERT_CB_ARG_TYPE void
140 #define MODSSL_PCHAR_CAST (char *)
141 #define MODSSL_D2I_SSL_SESSION_CONST
142 #define MODSSL_D2I_PrivateKey_CONST
143 #define MODSSL_D2I_X509_CONST
145 typedef int (modssl_read_bio_cb_fn)(char*,int,int);
147 #define modssl_X509_verify_cert(c) X509_verify_cert(c, NULL)
149 #define modssl_PEM_read_bio_X509(b, x, cb, arg) \
150 PEM_read_bio_X509(b, x, cb)
152 #define modssl_PEM_X509_INFO_read_bio(b, x, cb, arg)\
153 PEM_X509_INFO_read_bio(b, x, cb)
155 #define modssl_PEM_read_bio_PrivateKey(b, k, cb, arg) \
156 PEM_read_bio_PrivateKey(b, k, cb)
158 #ifndef HAVE_SSL_SET_STATE
159 #define SSL_set_state(ssl, state) /* XXX: should throw an error */
162 #define modssl_set_cipher_list(ssl, l) \
163 SSL_set_cipher_list(ssl, (char *)l)
165 #define modssl_free free
167 #ifndef PEM_F_DEF_CALLBACK
168 #define PEM_F_DEF_CALLBACK PEM_F_DEF_CB
171 #if SSLC_VERSION_NUMBER < 0x2000
173 #define X509_STORE_CTX_set_depth(st, d)
174 #define X509_CRL_get_lastUpdate(x) ((x)->crl->lastUpdate)
175 #define X509_CRL_get_nextUpdate(x) ((x)->crl->nextUpdate)
176 #define X509_CRL_get_REVOKED(x) ((x)->crl->revoked)
177 #define X509_REVOKED_get_serialNumber(xs) (xs->serialNumber)
179 #define modssl_set_verify(ssl, verify, cb) \
180 SSL_set_verify(ssl, verify)
182 #define NO_SSL_X509V3_H
184 #else /* SSLC_VERSION_NUMBER >= 0x2000 */
186 #define CRYPTO_malloc_init R_malloc_init
188 #define EVP_cleanup()
190 #endif /* SSLC_VERSION_NUMBER >= 0x2000 */
192 typedef void (*modssl_popfree_fn)(char *data);
194 #define sk_SSL_CIPHER_dup sk_dup
195 #define sk_SSL_CIPHER_find(st, data) sk_find(st, (void *)data)
196 #define sk_SSL_CIPHER_free sk_free
197 #define sk_SSL_CIPHER_num sk_num
198 #define sk_SSL_CIPHER_value (SSL_CIPHER *)sk_value
199 #define sk_X509_num sk_num
200 #define sk_X509_push sk_push
201 #define sk_X509_pop_free(st, free) sk_pop_free((STACK*)(st), (modssl_popfree_fn)(free))
202 #define sk_X509_value (X509 *)sk_value
203 #define sk_X509_INFO_free sk_free
204 #define sk_X509_INFO_pop_free(st, free) sk_pop_free((STACK*)(st), (modssl_popfree_fn)(free))
205 #define sk_X509_INFO_num sk_num
206 #define sk_X509_INFO_new_null sk_new_null
207 #define sk_X509_INFO_value (X509_INFO *)sk_value
208 #define sk_X509_NAME_find(st, data) sk_find(st, (void *)data)
209 #define sk_X509_NAME_free sk_free
210 #define sk_X509_NAME_new sk_new
211 #define sk_X509_NAME_num sk_num
212 #define sk_X509_NAME_push(st, data) sk_push(st, (void *)data)
213 #define sk_X509_NAME_value (X509_NAME *)sk_value
214 #define sk_X509_NAME_ENTRY_num sk_num
215 #define sk_X509_NAME_ENTRY_value (X509_NAME_ENTRY *)sk_value
216 #define sk_X509_NAME_set_cmp_func sk_set_cmp_func
217 #define sk_X509_REVOKED_num sk_num
218 #define sk_X509_REVOKED_value (X509_REVOKED *)sk_value
220 #else /* ! OPENSSL_VERSION_NUMBER && ! SSLC_VERSION_NUMBER */
222 #error "Unrecognized SSL Toolkit!"
224 #endif /* ! OPENSSL_VERSION_NUMBER && ! SSLC_VERSION_NUMBER */
226 #ifndef modssl_set_verify
227 #define modssl_set_verify(ssl, verify, cb) \
228 SSL_set_verify(ssl, verify, cb)
231 #ifndef NO_SSL_X509V3_H
232 #define HAVE_SSL_X509V3_H
235 #ifndef SSL_SESS_CACHE_NO_INTERNAL
236 #define SSL_SESS_CACHE_NO_INTERNAL SSL_SESS_CACHE_NO_INTERNAL_LOOKUP
239 #endif /* SSL_TOOLKIT_COMPAT_H */