conditionalise SK sign/verify on ENABLE_SK

Spotted by Darren and his faux-Vax
This commit is contained in:
Damien Miller 2019-11-01 14:49:25 +11:00
parent 5eb7b9563f
commit 03f9205f0f
1 changed files with 4 additions and 0 deletions

View File

@ -2684,11 +2684,13 @@ sshkey_sign(struct sshkey *key,
case KEY_ECDSA: case KEY_ECDSA:
r = ssh_ecdsa_sign(key, sigp, lenp, data, datalen, compat); r = ssh_ecdsa_sign(key, sigp, lenp, data, datalen, compat);
break; break;
# ifdef ENABLE_SK
case KEY_ECDSA_SK_CERT: case KEY_ECDSA_SK_CERT:
case KEY_ECDSA_SK: case KEY_ECDSA_SK:
r = sshsk_ecdsa_sign(sk_provider, key, sigp, lenp, r = sshsk_ecdsa_sign(sk_provider, key, sigp, lenp,
data, datalen, compat); data, datalen, compat);
break; break;
# endif /* ENABLE_SK */
# endif /* OPENSSL_HAS_ECC */ # endif /* OPENSSL_HAS_ECC */
case KEY_RSA_CERT: case KEY_RSA_CERT:
case KEY_RSA: case KEY_RSA:
@ -2734,10 +2736,12 @@ sshkey_verify(const struct sshkey *key,
case KEY_ECDSA_CERT: case KEY_ECDSA_CERT:
case KEY_ECDSA: case KEY_ECDSA:
return ssh_ecdsa_verify(key, sig, siglen, data, dlen, compat); return ssh_ecdsa_verify(key, sig, siglen, data, dlen, compat);
# ifdef ENABLE_SK
case KEY_ECDSA_SK_CERT: case KEY_ECDSA_SK_CERT:
case KEY_ECDSA_SK: case KEY_ECDSA_SK:
return ssh_ecdsa_sk_verify(key, sig, siglen, data, dlen, return ssh_ecdsa_sk_verify(key, sig, siglen, data, dlen,
compat); compat);
# endif /* ENABLE_SK */
# endif /* OPENSSL_HAS_ECC */ # endif /* OPENSSL_HAS_ECC */
case KEY_RSA_CERT: case KEY_RSA_CERT:
case KEY_RSA: case KEY_RSA: