Merge pull request #401 from ejohnstown/more-guards

Preprocessor Guards

Author: JacobBarthelmeh

examples/client/client.c

@@ -25,6 +25,7 @@
 #define WOLFSSH_TEST_CLIENT
 
 #include <wolfssh/ssh.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/test.h>
 #ifdef WOLFSSH_AGENT
     #include <wolfssh/agent.h>
@@ -197,7 +198,7 @@ static word32 userPrivateKeyTypeSz = 0;
 static byte isPrivate = 0;
 
 
-#ifndef NO_RSA
+#ifndef WOLFSSH_NO_RSA
 static const char* hanselPublicRsa =
     "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC9P3ZFowOsONXHD5MwWiCciXytBRZGho"
     "MNiisWSgUs5HdHcACuHYPi2W6Z1PBFmBWT9odOrGRjoZXJfDDoPi+j8SSfDGsc/hsCmc3G"
@@ -311,8 +312,8 @@ static const unsigned int hanselPrivateRsaSz = 1191;
 #endif
 
 
-#ifdef HAVE_ECC
-#ifndef NO_ECC256
+#ifndef WOLFSSH_NO_ECC
+#ifndef WOLFSSH_NO_ECDSA_SHA2_NISTP256
 static const char* hanselPublicEcc =
     "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAA"
     "BBBNkI5JTP6D0lF42tbxX19cE87hztUS6FSDoGvPfiU0CgeNSbI+aFdKIzTP5CQEJSvm25"
@@ -331,7 +332,7 @@ static const byte hanselPrivateEcc[] = {
   0xf9
 };
 static const unsigned int hanselPrivateEccSz = 121;
-#elif defined(HAVE_ECC521)
+#elif !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP521)
 static const char* hanselPublicEcc =
     "ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAA"
     "CFBAET/BOzBb9Jx9b52VIHFP4g/uk5KceDpz2M+/Ln9WiDjsMfb4NgNCAB+EMNJUX/TNBL"
@@ -553,7 +554,7 @@ static THREAD_RET readInput(void* in)
             return THREAD_RET_SUCCESS;
         }
     }
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
     return THREAD_RET_SUCCESS;
@@ -674,7 +675,7 @@ static THREAD_RET readPeer(void* in)
         }
         wc_UnLockMutex(&args->lock);
     }
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 
@@ -924,7 +925,7 @@ THREAD_RETURN WOLFSSH_THREAD client_test(void* args)
     if (username == NULL)
         err_sys("client requires a username parameter.");
 
-#ifdef NO_RSA
+#ifdef WOLFSSH_NO_RSA
     userEcc = 1;
 #endif
 
@@ -939,14 +940,14 @@ THREAD_RETURN WOLFSSH_THREAD client_test(void* args)
 
     if (privKeyName == NULL) {
         if (userEcc) {
-        #ifdef HAVE_ECC
+        #ifndef WOLFSSH_NO_ECC
             ret = wolfSSH_ReadKey_buffer(hanselPrivateEcc, hanselPrivateEccSz,
                     WOLFSSH_FORMAT_ASN1, &userPrivateKey, &userPrivateKeySz,
                     &userPrivateKeyType, &userPrivateKeyTypeSz, NULL);
         #endif
         }
         else {
-        #ifndef NO_RSA
+        #ifndef WOLFSSH_NO_RSA
             ret = wolfSSH_ReadKey_buffer(hanselPrivateRsa, hanselPrivateRsaSz,
                     WOLFSSH_FORMAT_ASN1, &userPrivateKey, &userPrivateKeySz,
                     &userPrivateKeyType, &userPrivateKeyTypeSz, NULL);
@@ -974,15 +975,15 @@ THREAD_RETURN WOLFSSH_THREAD client_test(void* args)
         userPublicKeySz = sizeof(userPublicKeyBuf);
 
         if (userEcc) {
-        #ifdef HAVE_ECC
+        #ifndef WOLFSSH_NO_ECC
             ret = wolfSSH_ReadKey_buffer((const byte*)hanselPublicEcc,
                     (word32)strlen(hanselPublicEcc), WOLFSSH_FORMAT_SSH,
                     &p, &userPublicKeySz,
                     &userPublicKeyType, &userPublicKeyTypeSz, NULL);
         #endif
         }
         else {
-        #ifndef NO_RSA
+        #ifndef WOLFSSH_NO_RSA
             ret = wolfSSH_ReadKey_buffer((const byte*)hanselPublicRsa,
                     (word32)strlen(hanselPublicRsa), WOLFSSH_FORMAT_SSH,
                     &p, &userPublicKeySz,
@@ -1169,7 +1170,7 @@ THREAD_RETURN WOLFSSH_THREAD client_test(void* args)
     if (privKeyName != NULL && userPrivateKey != NULL) {
         WFREE(userPrivateKey, NULL, DYNTYPE_PRIVKEY);
     }
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 

examples/echoserver/echoserver.c

@@ -35,6 +35,7 @@
 #include <wolfssl/wolfcrypt/coding.h>
 #include <wolfssl/wolfcrypt/wc_port.h>
 #include <wolfssh/ssh.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/wolfsftp.h>
 #include <wolfssh/agent.h>
 #include <wolfssh/test.h>
@@ -1339,7 +1340,7 @@ static int load_file(const char* fileName, byte* buf, word32* bufSz)
 }
 #endif /* NO_FILESYSTEM */
 
-#ifdef HAVE_ECC521
+#ifdef WOLFSSH_NO_ECDSA_SHA2_NISTP256
     #define ECC_PATH "./keys/server-key-ecc-521.der"
 #else
     #define ECC_PATH "./keys/server-key-ecc.der"
@@ -1439,16 +1440,16 @@ static const char samplePasswordBuffer[] =
     "jack:fetchapail\n";
 
 
-#ifdef HAVE_ECC
-#ifndef NO_ECC256
+#ifndef WOLFSSH_NO_ECC
+#ifndef WOLFSSH_NO_ECDSA_SHA2_NISTP256
 static const char samplePublicKeyEccBuffer[] =
     "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAA"
     "BBBNkI5JTP6D0lF42tbxX19cE87hztUS6FSDoGvPfiU0CgeNSbI+aFdKIzTP5CQEJSvm25"
     "qUzgDtH7oyaQROUnNvk= hansel\n"
     "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAA"
     "BBBKAtH8cqaDbtJFjtviLobHBmjCtG56DMkP6A4M2H9zX2/YCg1h9bYS7WHd9UQDwXO1Hh"
     "IZzRYecXh7SG9P4GhRY= gretel\n";
-#elif defined(HAVE_ECC521)
+#elif !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP521)
 static const char samplePublicKeyEccBuffer[] =
     "ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAA"
     "CFBAET/BOzBb9Jx9b52VIHFP4g/uk5KceDpz2M+/Ln9WiDjsMfb4NgNCAB+EMNJUX/TNBL"
@@ -1463,7 +1464,7 @@ static const char samplePublicKeyEccBuffer[] =
 #endif
 #endif
 
-#ifndef NO_RSA
+#ifndef WOLFSSH_NO_RSA
 static const char samplePublicKeyRsaBuffer[] =
     "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC9P3ZFowOsONXHD5MwWiCciXytBRZGho"
     "MNiisWSgUs5HdHcACuHYPi2W6Z1PBFmBWT9odOrGRjoZXJfDDoPi+j8SSfDGsc/hsCmc3G"
@@ -1865,12 +1866,12 @@ THREAD_RETURN WOLFSSH_THREAD echoserver_test(void* args)
     }
 #endif
 
-#ifdef NO_RSA
+#ifdef WOLFSSH_NO_RSA
     /* If wolfCrypt isn't built with RSA, force ECC on. */
     userEcc = 1;
     peerEcc = 1;
 #endif
-#ifndef HAVE_ECC
+#ifdef WOLFSSH_NO_ECC
     /* If wolfCrypt isn't built with ECC, force ECC off. */
     userEcc = 0;
     peerEcc = 0;
@@ -1958,12 +1959,12 @@ THREAD_RETURN WOLFSSH_THREAD echoserver_test(void* args)
         LoadPasswordBuffer(keyLoadBuf, bufSz, &pwMapList);
 
         if (userEcc) {
-        #ifdef HAVE_ECC
+        #ifndef WOLFSSH_NO_ECC
             bufName = samplePublicKeyEccBuffer;
         #endif
         }
         else {
-        #ifndef NO_RSA
+        #ifndef WOLFSSH_NO_RSA
             bufName = samplePublicKeyRsaBuffer;
         #endif
         }
@@ -2138,7 +2139,7 @@ THREAD_RETURN WOLFSSH_THREAD echoserver_test(void* args)
         fprintf(stderr, "Couldn't clean up wolfSSH.\n");
         WEXIT(EXIT_FAILURE);
     }
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 

examples/echoserver/include.am

@@ -7,6 +7,7 @@ noinst_HEADERS += examples/echoserver/echoserver.h
 examples_echoserver_echoserver_SOURCES      = examples/echoserver/echoserver.c
 examples_echoserver_echoserver_LDADD        = src/libwolfssh.la
 examples_echoserver_echoserver_DEPENDENCIES = src/libwolfssh.la
+examples_echoserver_echoserver_CFLAGS       = $(AM_CFLAGS)
 endif
 
 DISTCLEANFILES+= examples/echoserver/.libs/echoserver

examples/portfwd/portfwd.c

@@ -35,6 +35,7 @@
     #include <sys/select.h>
 #endif
 #include <wolfssh/ssh.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/test.h>
 #include <wolfssh/port.h>
 #include <wolfssl/wolfcrypt/ecc.h>
@@ -487,7 +488,7 @@ THREAD_RETURN WOLFSSH_THREAD portfwd_worker(void* args)
     WFREE(appBuffer, NULL, 0);
     WFREE(sshBuffer, NULL, 0);
 #endif
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 

examples/scpclient/scpclient.c

@@ -29,12 +29,13 @@
     #include <termios.h>
 #endif
 #include <wolfssh/ssh.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/wolfscp.h>
 #include <wolfssh/test.h>
 #include <wolfssh/port.h>
 
 #ifndef NO_WOLFSSH_CLIENT
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     #include <wolfssl/wolfcrypt/ecc.h>
 #endif
 #include "examples/scpclient/scpclient.h"
@@ -382,7 +383,7 @@ THREAD_RETURN WOLFSSH_THREAD scp_client(void* args)
     if (ret != WS_SUCCESS)
         err_sys("Closing scp stream failed. Connection could have been closed by peer");
 
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 

examples/server/server.c

@@ -35,6 +35,7 @@
 #include <wolfssl/wolfcrypt/sha256.h>
 #include <wolfssl/wolfcrypt/coding.h>
 #include <wolfssh/ssh.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/test.h>
 #include <wolfssl/wolfcrypt/ecc.h>
 #include "examples/server/server.h"
@@ -664,7 +665,7 @@ THREAD_RETURN WOLFSSH_THREAD server_test(void* args)
     }
     myoptind = 0;      /* reset for test cases */
 
-#ifdef NO_RSA
+#ifdef WOLFSSH_NO_RSA
     /* If wolfCrypt isn't built with RSA, force ECC on. */
     useEcc = 1;
 #endif
@@ -776,7 +777,7 @@ THREAD_RETURN WOLFSSH_THREAD server_test(void* args)
         fprintf(stderr, "Couldn't clean up wolfSSH.\n");
         exit(EXIT_FAILURE);
     }
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 

examples/sftpclient/sftpclient.c

@@ -25,6 +25,7 @@
 #define WOLFSSH_TEST_CLIENT
 
 #include <wolfssh/ssh.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/wolfsftp.h>
 #include <wolfssh/test.h>
 #include <wolfssh/port.h>
@@ -1384,7 +1385,7 @@ THREAD_RETURN WOLFSSH_THREAD sftpclient_test(void* args)
     if (username == NULL)
         err_sys("client requires a username parameter.");
 
-#ifdef NO_RSA
+#ifdef WOLFSSH_NO_RSA
     userEcc = 1;
     /* peerEcc = 1; */
 #endif
@@ -1524,7 +1525,7 @@ THREAD_RETURN WOLFSSH_THREAD sftpclient_test(void* args)
         printf("error %d encountered\n", ret);
         ((func_args*)args)->return_code = ret;
     }
-#if defined(HAVE_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
+#if !defined(WOLFSSH_NO_ECC) && defined(FP_ECC) && defined(HAVE_THREAD_LS)
     wc_ecc_fp_free();  /* free per thread cache */
 #endif
 

src/agent.c

@@ -667,8 +667,10 @@ static WOLFSSH_AGENT_ID* FindKeyId(WOLFSSH_AGENT_ID* id,
     return id;
 }
 
+
 #if !defined(WOLFSSH_NO_SSH_RSA_SHA2_256) || \
     !defined(WOLFSSH_NO_SSH_RSA_SHA2_512)
+
 static int SignHashRsa(WOLFSSH_AGENT_KEY_RSA* rawKey, enum wc_HashType hashType,
         const byte* digest, word32 digestSz, byte* sig, word32* sigSz,
         WC_RNG* rng, void* heap)
@@ -707,7 +709,13 @@ static int SignHashRsa(WOLFSSH_AGENT_KEY_RSA* rawKey, enum wc_HashType hashType,
 
     return ret;
 }
-#endif
+
+#endif /* WOLFSSH_NO_SSH_RSA_SHA2_256/512 */
+
+
+#if !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP256) || \
+    !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP384) || \
+    !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP521)
 
 static int SignHashEcc(WOLFSSH_AGENT_KEY_ECDSA* rawKey, int curveId,
         const byte* digest, word32 digestSz,
@@ -763,6 +771,8 @@ static int SignHashEcc(WOLFSSH_AGENT_KEY_ECDSA* rawKey, int curveId,
     return ret;
 }
 
+#endif /* WOLFSSH_NO_ECDSA_SHA2_NISTP256/384/521 */
+
 
 static int PostSignRequest(WOLFSSH_AGENT_CTX* agent,
         byte* keyBlob, word32 keyBlobSz, byte* data, word32 dataSz,
@@ -825,7 +835,7 @@ static int PostSignRequest(WOLFSSH_AGENT_CTX* agent,
                 signEcc = 1;
                 break;
             #endif
-            #ifndef WOLFSSH_NO_ECDSA_SHA2_NISTP512
+            #ifndef WOLFSSH_NO_ECDSA_SHA2_NISTP521
             case ID_ECDSA_SHA2_NISTP521:
                 hashType = WC_HASH_TYPE_SHA512;
                 curveId = ECC_SECP521R1;
@@ -854,7 +864,7 @@ static int PostSignRequest(WOLFSSH_AGENT_CTX* agent,
 #endif
 #if !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP256) || \
     !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP384) || \
-    !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP512)
+    !defined(WOLFSSH_NO_ECDSA_SHA2_NISTP521)
         if (signEcc)
             ret = SignHashEcc(&id->key.ecdsa, curveId, digest, digestSz,
                     sig, &sigSz, &agent->rng);

src/keygen.c

@@ -38,6 +38,7 @@
 
 #include <wolfssl/wolfcrypt/random.h>
 #include <wolfssl/wolfcrypt/rsa.h>
+#include <wolfssh/internal.h>
 #include <wolfssh/error.h>
 #include <wolfssh/keygen.h>
 #include <wolfssh/log.h>
@@ -57,7 +58,7 @@
 int wolfSSH_MakeRsaKey(byte* out, word32 outSz,
                        word32 size, word32 e)
 {
-#ifndef NO_RSA
+#ifndef WOLFSSH_NO_RSA
 
     int ret = WS_SUCCESS;
     WC_RNG rng;

wolfssh/internal.h

@@ -507,16 +507,6 @@ struct WS_SFTP_RENAME_STATE;
 
 struct WOLFSSH_AGENT_CTX;
 
-#ifdef WOLFSSH_FWD
-typedef enum FwdStates {
-    FWD_STATE_INIT,
-    FWD_STATE_LISTEN,
-    FWD_STATE_CONNECTING,
-    FWD_STATE_FORWARDING,
-    FWD_STATE_CLEANUP,
-} WS_FwdStates;
-#endif /* WOLFSSH_FWD */
-
 /* our wolfSSH session */
 struct WOLFSSH {
     WOLFSSH_CTX* ctx;      /* owner context */