Disable parent certificate functions if chain length is 1

pennam · pennam · commit 504a875a9283 · 2024-07-16T11:40:52.000+02:00
diff --git a/src/BearSSLClient.cpp b/src/BearSSLClient.cpp
@@ -411,6 +411,7 @@ void BearSSLClient::setKey(const char key[], const char cert[])
 }
 #endif
 
+#if BEAR_SSL_CLIENT_CHAIN_SIZE > 1
 void BearSSLClient::setEccCertParent(const char cert[])
 {
   // try to decode the cert
@@ -457,6 +458,7 @@ void BearSSLClient::setEccCertParent(const char cert[])
     }
   }
 }
+#endif
 
 int BearSSLClient::errorCode()
 {
@@ -621,11 +623,12 @@ void BearSSLClient::clientAppendKey(void *ctx, const void *data, size_t len)
 }
 #endif
 
+#if BEAR_SSL_CLIENT_CHAIN_SIZE > 1
 void BearSSLClient::parentAppendCert(void *ctx, const void *data, size_t len)
 {
   BearSSLClient* c = (BearSSLClient*)ctx;
 
   memcpy(&c->_ecCert[1].data[c->_ecCert[1].data_len], data, len);
   c->_ecCert[1].data_len += len;
 }
-
+#endif
diff --git a/src/BearSSLClient.h b/src/BearSSLClient.h
@@ -101,7 +101,9 @@ class BearSSLClient : public Client {
 #ifndef ARDUINO_BEARSSL_DISABLE_KEY_DECODER
   void setKey(const char key[], const char cert[]);
 #endif
+#if BEAR_SSL_CLIENT_CHAIN_SIZE > 1
   void setEccCertParent(const char cert[]);
+#endif
 
   int errorCode();
 
@@ -113,7 +115,9 @@ class BearSSLClient : public Client {
 #ifndef ARDUINO_BEARSSL_DISABLE_KEY_DECODER
   static void clientAppendKey(void *ctx, const void *data, size_t len);
 #endif
+#if BEAR_SSL_CLIENT_CHAIN_SIZE > 1
   static void parentAppendCert(void *ctx, const void *data, size_t len);
+#endif
 
 private:
   Client* _client;

Original file line number	Diff line number	Diff line change
`@@ -411,6 +411,7 @@ void BearSSLClient::setKey(const char key[], const char cert[])`
`411`	`411`	`}`
`412`	`412`	`#endif`
`413`	`413`
	`414`	`+#if BEAR_SSL_CLIENT_CHAIN_SIZE > 1`
`414`	`415`	`void BearSSLClient::setEccCertParent(const char cert[])`
`415`	`416`	`{`
`416`	`417`	`// try to decode the cert`
`@@ -457,6 +458,7 @@ void BearSSLClient::setEccCertParent(const char cert[])`
`457`	`458`	`}`
`458`	`459`	`}`
`459`	`460`	`}`
	`461`	`+#endif`
`460`	`462`
`461`	`463`	`int BearSSLClient::errorCode()`
`462`	`464`	`{`
`@@ -621,11 +623,12 @@ void BearSSLClient::clientAppendKey(void ctx, const void data, size_t len)`
`621`	`623`	`}`
`622`	`624`	`#endif`
`623`	`625`
	`626`	`+#if BEAR_SSL_CLIENT_CHAIN_SIZE > 1`
`624`	`627`	`void BearSSLClient::parentAppendCert(void ctx, const void data, size_t len)`
`625`	`628`	`{`
`626`	`629`	`BearSSLClient* c = (BearSSLClient*)ctx;`
`627`	`630`
`628`	`631`	`memcpy(&c->_ecCert[1].data[c->_ecCert[1].data_len], data, len);`
`629`	`632`	`c->_ecCert[1].data_len += len;`
`630`	`633`	`}`
`631`		`-`
	`634`	`+#endif`