|
|
@@ -24,11 +24,6 @@
|
|
|
#include <openssl/engine.h>
|
|
|
#endif /* OPENSSL_NO_ENGINE */
|
|
|
|
|
|
-#ifdef ANDROID
|
|
|
-#include <openssl/pem.h>
|
|
|
-#include "keystore_get.h"
|
|
|
-#endif /* ANDROID */
|
|
|
-
|
|
|
#include "common.h"
|
|
|
#include "crypto.h"
|
|
|
#include "tls.h"
|
|
|
@@ -60,6 +55,22 @@
|
|
|
#endif /* OPENSSL_NO_TLSEXT */
|
|
|
#endif /* SSL_set_tlsext_status_type */
|
|
|
|
|
|
+#ifdef ANDROID
|
|
|
+#include <openssl/pem.h>
|
|
|
+#include <keystore/keystore_get.h>
|
|
|
+
|
|
|
+static BIO * BIO_from_keystore(const char *key)
|
|
|
+{
|
|
|
+ BIO *bio = NULL;
|
|
|
+ uint8_t *value = NULL;
|
|
|
+ int length = keystore_get(key, strlen(key), &value);
|
|
|
+ if (length != -1 && (bio = BIO_new(BIO_s_mem())) != NULL)
|
|
|
+ BIO_write(bio, value, length);
|
|
|
+ free(value);
|
|
|
+ return bio;
|
|
|
+}
|
|
|
+#endif /* ANDROID */
|
|
|
+
|
|
|
static int tls_openssl_ref_count = 0;
|
|
|
|
|
|
struct tls_context {
|
|
|
@@ -1496,19 +1507,6 @@ static int tls_load_ca_der(void *_ssl_ctx, const char *ca_cert)
|
|
|
#endif /* OPENSSL_NO_STDIO */
|
|
|
|
|
|
|
|
|
-#ifdef ANDROID
|
|
|
-static BIO * BIO_from_keystore(const char *key)
|
|
|
-{
|
|
|
- BIO *bio = NULL;
|
|
|
- char value[KEYSTORE_MESSAGE_SIZE];
|
|
|
- int length = keystore_get(key, strlen(key), value);
|
|
|
- if (length != -1 && (bio = BIO_new(BIO_s_mem())) != NULL)
|
|
|
- BIO_write(bio, value, length);
|
|
|
- return bio;
|
|
|
-}
|
|
|
-#endif /* ANDROID */
|
|
|
-
|
|
|
-
|
|
|
static int tls_connection_ca_cert(void *_ssl_ctx, struct tls_connection *conn,
|
|
|
const char *ca_cert, const u8 *ca_cert_blob,
|
|
|
size_t ca_cert_blob_len, const char *ca_path)
|
Kenny Root