LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10468 Commits
1 Branch
46 MiB
Tree: 68f1d3555a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '68f1d3555a'
${ noResults }
openwrt-packages-dist/net/transmission/patches/010-add-mbedtls-support.patch

430 lines
15 KiB
Raw Normal View History

transmission: Update to 2.93 + fixes [v2] DNS rebinding protection introduced a new option. Use it to disable it as OpenWrt does not need it. Adjusted Makefile to use the release instead of a git version. Also cleaned up and added LICENSE entries. Eliminated useless patches. The syslog one actually doesn't log much. No need to mask the os release anymore either. Added group entry to init script. Otherwise files end up being owned by user:root which is bogus. v2: Previous maintainer relied on git version of Transmission for mbedtls support. Backport it to the stable instead. Signed-off-by: Rosen Penev <rosenp@gmail.com>
7 years ago
transmission: conversion polarssl to mbedtls Maintainer: me / @obsy Compile tested: x86, LEDE Run tested: X86/geode, LEDE Description: - up to current git version: 35fea28d1a37875ef7480ac061754df617805b19 - replace polarssl via mbedtls Closes https://github.com/openwrt/packages/issues/3731 Signed-off-by: Cezary Jackiewicz <cezary@eko.one.pl>
8 years ago
transmission: Update to 2.93 + fixes [v2] DNS rebinding protection introduced a new option. Use it to disable it as OpenWrt does not need it. Adjusted Makefile to use the release instead of a git version. Also cleaned up and added LICENSE entries. Eliminated useless patches. The syslog one actually doesn't log much. No need to mask the os release anymore either. Added group entry to init script. Otherwise files end up being owned by user:root which is bogus. v2: Previous maintainer relied on git version of Transmission for mbedtls support. Backport it to the stable instead. Signed-off-by: Rosen Penev <rosenp@gmail.com>
7 years ago
transmission: conversion polarssl to mbedtls Maintainer: me / @obsy Compile tested: x86, LEDE Run tested: X86/geode, LEDE Description: - up to current git version: 35fea28d1a37875ef7480ac061754df617805b19 - replace polarssl via mbedtls Closes https://github.com/openwrt/packages/issues/3731 Signed-off-by: Cezary Jackiewicz <cezary@eko.one.pl>
8 years ago
transmission: Update to 2.93 + fixes [v2] DNS rebinding protection introduced a new option. Use it to disable it as OpenWrt does not need it. Adjusted Makefile to use the release instead of a git version. Also cleaned up and added LICENSE entries. Eliminated useless patches. The syslog one actually doesn't log much. No need to mask the os release anymore either. Added group entry to init script. Otherwise files end up being owned by user:root which is bogus. v2: Previous maintainer relied on git version of Transmission for mbedtls support. Backport it to the stable instead. Signed-off-by: Rosen Penev <rosenp@gmail.com>
7 years ago
transmission: conversion polarssl to mbedtls Maintainer: me / @obsy Compile tested: x86, LEDE Run tested: X86/geode, LEDE Description: - up to current git version: 35fea28d1a37875ef7480ac061754df617805b19 - replace polarssl via mbedtls Closes https://github.com/openwrt/packages/issues/3731 Signed-off-by: Cezary Jackiewicz <cezary@eko.one.pl>
8 years ago
transmission: Update to 2.93 + fixes [v2] DNS rebinding protection introduced a new option. Use it to disable it as OpenWrt does not need it. Adjusted Makefile to use the release instead of a git version. Also cleaned up and added LICENSE entries. Eliminated useless patches. The syslog one actually doesn't log much. No need to mask the os release anymore either. Added group entry to init script. Otherwise files end up being owned by user:root which is bogus. v2: Previous maintainer relied on git version of Transmission for mbedtls support. Backport it to the stable instead. Signed-off-by: Rosen Penev <rosenp@gmail.com>
7 years ago
 
  1. From bad7f584eb11076ae37fd51cdb21842935c6ea57 Mon Sep 17 00:00:00 2001
  2. From: Mike Gelfand <mikedld@mikedld.com>
  3. Date: Wed, 26 Oct 2016 20:37:10 +0300
  4. Subject: [PATCH] Add support for mbedtls (formely polarssl)
  5. 

  6. ---

  7.  cmake/FindPolarSSL.cmake                |  37 +++++++----
  8.  configure.ac                            |  28 ++++----
  9.  libtransmission/CMakeLists.txt          |   4 ++
  10.  libtransmission/Makefile.am             |   3 +
  11.  libtransmission/crypto-utils-polarssl.c | 112 +++++++++++++++++++-------------
  12.  5 files changed, 115 insertions(+), 69 deletions(-)
  13. 

  14. diff --git a/cmake/FindPolarSSL.cmake b/cmake/FindPolarSSL.cmake

  15. index 0a958e0..e4e1ac6 100644

  16. --- a/cmake/FindPolarSSL.cmake

  17. +++ b/cmake/FindPolarSSL.cmake

  18. @@ -8,21 +8,36 @@ if(POLARSSL_PREFER_STATIC_LIB)

  19.  endif()
  20.  
  21.  if(UNIX)
  22. -  find_package(PkgConfig QUIET)

  23. -  pkg_check_modules(_POLARSSL QUIET polarssl)

  24. +    find_package(PkgConfig QUIET)

  25. +    pkg_check_modules(_MBEDTLS QUIET mbedtls)

  26.  endif()
  27.  
  28. -find_path(POLARSSL_INCLUDE_DIR NAMES polarssl/version.h HINTS ${_POLARSSL_INCLUDEDIR})

  29. -find_library(POLARSSL_LIBRARY NAMES polarssl HINTS ${_POLARSSL_LIBDIR})

  30. +find_path(MBEDTLS_INCLUDE_DIR NAMES mbedtls/version.h HINTS ${_MBEDTLS_INCLUDEDIR})

  31. +find_library(MBEDTLS_LIBRARY NAMES mbedtls HINTS ${_MBEDTLS_LIBDIR})

  32. +if(MBEDTLS_INCLUDE_DIR AND MBEDTLS_LIBRARY)

  33. +    set(POLARSSL_INCLUDE_DIR ${MBEDTLS_INCLUDE_DIR})

  34. +    set(POLARSSL_LIBRARY ${MBEDTLS_LIBRARY})

  35. +    set(POLARSSL_VERSION ${_MBEDTLS_VERSION})

  36. +    set(POLARSSL_IS_MBEDTLS ON)

  37. +else()

  38. +    if(UNIX)

  39. +        pkg_check_modules(_POLARSSL QUIET polarssl)

  40. +    endif()

  41. +

  42. +    find_path(POLARSSL_INCLUDE_DIR NAMES polarssl/version.h HINTS ${_POLARSSL_INCLUDEDIR})

  43. +    find_library(POLARSSL_LIBRARY NAMES polarssl HINTS ${_POLARSSL_LIBDIR})

  44. +    set(POLARSSL_VERSION ${_POLARSSL_VERSION})

  45. +    set(POLARSSL_IS_MBEDTLS OFF)

  46. +endif()

  47.  
  48. -if(POLARSSL_INCLUDE_DIR)

  49. -    if(_POLARSSL_VERSION)

  50. -        set(POLARSSL_VERSION ${_POLARSSL_VERSION})

  51. +if(NOT POLARSSL_VERSION AND POLARSSL_INCLUDE_DIR)

  52. +    if(POLARSSL_IS_MBEDTLS)

  53. +        file(STRINGS "${POLARSSL_INCLUDE_DIR}/mbedtls/version.h" POLARSSL_VERSION_STR REGEX "^#define[\t ]+MBEDTLS_VERSION_STRING[\t ]+\"[^\"]+\"")

  54.      else()
  55.          file(STRINGS "${POLARSSL_INCLUDE_DIR}/polarssl/version.h" POLARSSL_VERSION_STR REGEX "^#define[\t ]+POLARSSL_VERSION_STRING[\t ]+\"[^\"]+\"")
  56. -        if(POLARSSL_VERSION_STR MATCHES "\"([^\"]+)\"")

  57. -            set(POLARSSL_VERSION "${CMAKE_MATCH_1}")

  58. -        endif()

  59. +    endif()

  60. +    if(POLARSSL_VERSION_STR MATCHES "\"([^\"]+)\"")

  61. +        set(POLARSSL_VERSION "${CMAKE_MATCH_1}")

  62.      endif()
  63.  endif()
  64.  
  65. @@ -39,7 +54,7 @@ find_package_handle_standard_args(PolarSSL

  66.          POLARSSL_VERSION
  67.  )
  68.  
  69. -mark_as_advanced(POLARSSL_INCLUDE_DIR POLARSSL_LIBRARY)

  70. +mark_as_advanced(MBEDTLS_INCLUDE_DIR MBEDTLS_LIBRARY POLARSSL_INCLUDE_DIR POLARSSL_LIBRARY)

  71.  
  72.  if(POLARSSL_PREFER_STATIC_LIB)
  73.      set(CMAKE_FIND_LIBRARY_SUFFIXES ${POLARSSL_ORIG_CMAKE_FIND_LIBRARY_SUFFIXES})
  74. diff --git a/configure.ac b/configure.ac

  75. index aff673b..cb026df 100644

  76. --- a/configure.ac

  77. +++ b/configure.ac

  78. @@ -149,23 +149,26 @@ AS_IF([test "x$want_crypto" = "xauto" -o "x$want_crypto" = "xcyassl"], [

  79.      )
  80.  ])
  81.  AS_IF([test "x$want_crypto" = "xauto" -o "x$want_crypto" = "xpolarssl"], [
  82. -    AC_CHECK_HEADER([polarssl/version.h],

  83. -        [AC_EGREP_CPP([version_ok], [#include <polarssl/version.h>

  84. -                                     #if defined (POLARSSL_VERSION_NUMBER) && POLARSSL_VERSION_NUMBER >= $POLARSSL_MINIMUM

  85. -                                     version_ok

  86. -                                     #endif],

  87. -            [AC_CHECK_LIB([polarssl], [dhm_calc_secret],

  88. -                [want_crypto="polarssl"; CRYPTO_PKG="polarssl"; CRYPTO_CFLAGS=""; CRYPTO_LIBS="-lpolarssl"],

  89. +    PKG_CHECK_MODULES(MBEDTLS, [mbedtls >= $POLARSSL_MINIMUM],

  90. +        [want_crypto="polarssl"; CRYPTO_PKG="polarssl"; CRYPTO_CFLAGS="$MBEDTLS_CFLAGS"; CRYPTO_LIBS="$MBEDTLS_LIBS"; POLARSSL_IS_MBEDTLS=yes],

  91. +        [AC_CHECK_HEADER([polarssl/version.h],

  92. +            [AC_EGREP_CPP([version_ok], [#include <polarssl/version.h>

  93. +                                         #if defined (POLARSSL_VERSION_NUMBER) && POLARSSL_VERSION_NUMBER >= $POLARSSL_MINIMUM

  94. +                                         version_ok

  95. +                                         #endif],

  96. +                [AC_CHECK_LIB([polarssl], [dhm_calc_secret],

  97. +                    [want_crypto="polarssl"; CRYPTO_PKG="polarssl"; CRYPTO_CFLAGS=""; CRYPTO_LIBS="-lpolarssl"],

  98. +                    [AS_IF([test "x$want_crypto" = "xpolarssl"],

  99. +                        [AC_MSG_ERROR([PolarSSL support requested, but library not found.])]

  100. +                    )]

  101. +                )],

  102.                  [AS_IF([test "x$want_crypto" = "xpolarssl"],
  103. -                    [AC_MSG_ERROR([PolarSSL support requested, but library not found.])]

  104. +                    [AC_MSG_ERROR([PolarSSL support requested, but version not suitable.])]

  105.                  )]
  106.              )],
  107.              [AS_IF([test "x$want_crypto" = "xpolarssl"],
  108. -                [AC_MSG_ERROR([PolarSSL support requested, but version not suitable.])]

  109. +                [AC_MSG_ERROR([PolarSSL support requested, but headers not found.])]

  110.              )]
  111. -        )],

  112. -        [AS_IF([test "x$want_crypto" = "xpolarssl"],

  113. -            [AC_MSG_ERROR([PolarSSL support requested, but headers not found.])]

  114.          )]
  115.      )
  116.  ])
  117. @@ -180,6 +183,7 @@ AS_IF([test "x$CRYPTO_PKG" = "x"], [

  118.  AM_CONDITIONAL([CRYPTO_USE_OPENSSL],[test "x$CRYPTO_PKG" = "xopenssl"])
  119.  AM_CONDITIONAL([CRYPTO_USE_CYASSL],[test "x$CRYPTO_PKG" = "xcyassl"])
  120.  AM_CONDITIONAL([CRYPTO_USE_POLARSSL],[test "x$CRYPTO_PKG" = "xpolarssl"])
  121. +AM_CONDITIONAL([POLARSSL_IS_MBEDTLS],[test "x$POLARSSL_IS_MBEDTLS" = "xyes"])

  122.  AC_SUBST(CRYPTO_PKG)
  123.  AC_SUBST(CRYPTO_CFLAGS)
  124.  AC_SUBST(CRYPTO_LIBS)
  125. diff --git a/libtransmission/CMakeLists.txt b/libtransmission/CMakeLists.txt

  126. index 4865dee..b5230b9 100644

  127. --- a/libtransmission/CMakeLists.txt

  128. +++ b/libtransmission/CMakeLists.txt

  129. @@ -194,6 +194,10 @@ if(USE_SYSTEM_B64)

  130.      add_definitions(-DUSE_SYSTEM_B64)
  131.  endif()
  132.  
  133. +if(POLARSSL_IS_MBEDTLS)

  134. +    add_definitions(-DPOLARSSL_IS_MBEDTLS)

  135. +endif()

  136. +

  137.  include_directories(
  138.      ${PROJECT_SOURCE_DIR}
  139.      ${PROJECT_BINARY_DIR}
  140. diff --git a/libtransmission/Makefile.am b/libtransmission/Makefile.am

  141. index f91769a..4d7e85a 100644

  142. --- a/libtransmission/Makefile.am

  143. +++ b/libtransmission/Makefile.am

  144. @@ -102,6 +102,9 @@ libtransmission_a_SOURCES += crypto-utils-cyassl.c

  145.  endif
  146.  if CRYPTO_USE_POLARSSL
  147.  libtransmission_a_SOURCES += crypto-utils-polarssl.c
  148. +if POLARSSL_IS_MBEDTLS

  149. +AM_CPPFLAGS += -DPOLARSSL_IS_MBEDTLS

  150. +endif

  151.  endif
  152.  
  153.  noinst_HEADERS = \
  154. diff --git a/libtransmission/crypto-utils-polarssl.c b/libtransmission/crypto-utils-polarssl.c

  155. index 1c59a7f..e98c13d 100644

  156. --- a/libtransmission/crypto-utils-polarssl.c

  157. +++ b/libtransmission/crypto-utils-polarssl.c

  158. @@ -1,5 +1,5 @@

  159.  /*
  160. - * This file Copyright (C) 2014-2015 Mnemosyne LLC

  161. + * This file Copyright (C) 2014-2016 Mnemosyne LLC

  162.   *
  163.   * It may be used under the GNU GPL versions 2 or 3
  164.   * or any future license endorsed by Mnemosyne LLC.
  165. @@ -7,15 +7,25 @@

  166.   * $Id$
  167.   */
  168.  
  169. +#if defined (POLARSSL_IS_MBEDTLS)

  170. + #define API_HEADER(x) <mbedtls/x>

  171. + #define API(x) mbedtls_##x

  172. + #define API_VERSION_NUMBER MBEDTLS_VERSION_NUMBER

  173. +#else

  174. + #define API_HEADER(x) <polarssl/x>

  175. + #define API(x) x

  176. + #define API_VERSION_NUMBER POLARSSL_VERSION_NUMBER

  177. +#endif

  178. +

  179.  #include <assert.h>
  180.  
  181. -#include <polarssl/arc4.h>

  182. -#include <polarssl/base64.h>

  183. -#include <polarssl/ctr_drbg.h>

  184. -#include <polarssl/dhm.h>

  185. -#include <polarssl/error.h>

  186. -#include <polarssl/sha1.h>

  187. -#include <polarssl/version.h>

  188. +#include API_HEADER (arc4.h)

  189. +#include API_HEADER (base64.h)

  190. +#include API_HEADER (ctr_drbg.h)

  191. +#include API_HEADER (dhm.h)

  192. +#include API_HEADER (error.h)

  193. +#include API_HEADER (sha1.h)

  194. +#include API_HEADER (version.h)

  195.  
  196.  #include "transmission.h"
  197.  #include "crypto-utils.h"
  198. @@ -41,7 +51,9 @@ log_polarssl_error (int          error_code,

  199.      {
  200.        char error_message[256];
  201.  
  202. -#if POLARSSL_VERSION_NUMBER >= 0x01030000

  203. +#if defined (POLARSSL_IS_MBEDTLS)

  204. +      mbedtls_strerror (error_code, error_message, sizeof (error_message));

  205. +#elif API_VERSION_NUMBER >= 0x01030000

  206.        polarssl_strerror (error_code, error_message, sizeof (error_message));
  207.  #else
  208.        error_strerror (error_code, error_message, sizeof (error_message));
  209. @@ -51,7 +63,7 @@ log_polarssl_error (int          error_code,

  210.      }
  211.  }
  212.  
  213. -#define log_error(error_code) log_polarssl_error(error_code, __FILE__, __LINE__)

  214. +#define log_error(error_code) log_polarssl_error ((error_code), __FILE__, __LINE__)

  215.  
  216.  static bool
  217.  check_polarssl_result (int          result,
  218. @@ -83,15 +95,20 @@ my_rand (void * context UNUSED, unsigned char * buffer, size_t buffer_size)

  219.    return 0;
  220.  }
  221.  
  222. -static ctr_drbg_context *

  223. +static API (ctr_drbg_context) *

  224.  get_rng (void)
  225.  {
  226. -  static ctr_drbg_context rng;

  227. +  static API (ctr_drbg_context) rng;

  228.    static bool rng_initialized = false;
  229.  
  230.    if (!rng_initialized)
  231.      {
  232. -      if (!check_result (ctr_drbg_init (&rng, &my_rand, NULL, NULL, 0)))

  233. +#if API_VERSION_NUMBER >= 0x02000000

  234. +      API (ctr_drbg_init) (&rng);

  235. +      if (!check_result (API (ctr_drbg_seed) (&rng, &my_rand, NULL, NULL, 0)))

  236. +#else

  237. +      if (!check_result (API (ctr_drbg_init) (&rng, &my_rand, NULL, NULL, 0)))

  238. +#endif

  239.          return NULL;
  240.        rng_initialized = true;
  241.      }
  242. @@ -117,13 +134,13 @@ get_rng_lock (void)

  243.  tr_sha1_ctx_t
  244.  tr_sha1_init (void)
  245.  {
  246. -  sha1_context * handle = tr_new0 (sha1_context, 1);

  247. +  API (sha1_context) * handle = tr_new0 (API (sha1_context), 1);

  248.  
  249. -#if POLARSSL_VERSION_NUMBER >= 0x01030800

  250. -  sha1_init (handle);

  251. +#if API_VERSION_NUMBER >= 0x01030800

  252. +  API (sha1_init) (handle);

  253.  #endif
  254.  
  255. -  sha1_starts (handle);

  256. +  API (sha1_starts) (handle);

  257.    return handle;
  258.  }
  259.  
  260. @@ -139,7 +156,7 @@ tr_sha1_update (tr_sha1_ctx_t   handle,

  261.  
  262.    assert (data != NULL);
  263.  
  264. -  sha1_update (handle, data, data_length);

  265. +  API (sha1_update) (handle, data, data_length);

  266.    return true;
  267.  }
  268.  
  269. @@ -151,11 +168,11 @@ tr_sha1_final (tr_sha1_ctx_t   handle,

  270.      {
  271.        assert (handle != NULL);
  272.  
  273. -      sha1_finish (handle, hash);

  274. +      API (sha1_finish) (handle, hash);

  275.      }
  276.  
  277. -#if POLARSSL_VERSION_NUMBER >= 0x01030800

  278. -  sha1_free (handle);

  279. +#if API_VERSION_NUMBER >= 0x01030800

  280. +  API (sha1_free) (handle);

  281.  #endif
  282.  
  283.    tr_free (handle);
  284. @@ -169,10 +186,10 @@ tr_sha1_final (tr_sha1_ctx_t   handle,

  285.  tr_rc4_ctx_t
  286.  tr_rc4_new (void)
  287.  {
  288. -  arc4_context * handle = tr_new0 (arc4_context, 1);

  289. +  API (arc4_context) * handle = tr_new0 (API (arc4_context), 1);

  290.  
  291. -#if POLARSSL_VERSION_NUMBER >= 0x01030800

  292. -  arc4_init (handle);

  293. +#if API_VERSION_NUMBER >= 0x01030800

  294. +  API (arc4_init) (handle);

  295.  #endif
  296.  
  297.    return handle;
  298. @@ -181,8 +198,8 @@ tr_rc4_new (void)

  299.  void
  300.  tr_rc4_free (tr_rc4_ctx_t handle)
  301.  {
  302. -#if POLARSSL_VERSION_NUMBER >= 0x01030800

  303. -  arc4_free (handle);

  304. +#if API_VERSION_NUMBER >= 0x01030800

  305. +  API (arc4_free) (handle);

  306.  #endif
  307.  
  308.    tr_free (handle);
  309. @@ -196,7 +213,7 @@ tr_rc4_set_key (tr_rc4_ctx_t    handle,

  310.    assert (handle != NULL);
  311.    assert (key != NULL);
  312.  
  313. -  arc4_setup (handle, key, key_length);

  314. +  API (arc4_setup) (handle, key, key_length);

  315.  }
  316.  
  317.  void
  318. @@ -213,7 +230,7 @@ tr_rc4_process (tr_rc4_ctx_t   handle,

  319.    assert (input != NULL);
  320.    assert (output != NULL);
  321.  
  322. -  arc4_crypt (handle, length, input, output);

  323. +  API (arc4_crypt) (handle, length, input, output);

  324.  }
  325.  
  326.  /***
  327. @@ -226,19 +243,19 @@ tr_dh_new (const uint8_t * prime_num,

  328.             const uint8_t * generator_num,
  329.             size_t          generator_num_length)
  330.  {
  331. -  dhm_context * handle = tr_new0 (dhm_context, 1);

  332. +  API (dhm_context) * handle = tr_new0 (API (dhm_context), 1);

  333.  
  334.    assert (prime_num != NULL);
  335.    assert (generator_num != NULL);
  336.  
  337. -#if POLARSSL_VERSION_NUMBER >= 0x01030800

  338. -  dhm_init (handle);

  339. +#if API_VERSION_NUMBER >= 0x01030800

  340. +  API (dhm_init) (handle);

  341.  #endif
  342.  
  343. -  if (!check_result (mpi_read_binary (&handle->P, prime_num, prime_num_length)) ||

  344. -      !check_result (mpi_read_binary (&handle->G, generator_num, generator_num_length)))

  345. +  if (!check_result (API (mpi_read_binary) (&handle->P, prime_num, prime_num_length)) ||

  346. +      !check_result (API (mpi_read_binary) (&handle->G, generator_num, generator_num_length)))

  347.      {
  348. -      dhm_free (handle);

  349. +      API (dhm_free) (handle);

  350.        return NULL;
  351.      }
  352.  
  353. @@ -253,7 +270,7 @@ tr_dh_free (tr_dh_ctx_t handle)

  354.    if (handle == NULL)
  355.      return;
  356.  
  357. -  dhm_free (handle);

  358. +  API (dhm_free) (handle);

  359.  }
  360.  
  361.  bool
  362. @@ -262,7 +279,7 @@ tr_dh_make_key (tr_dh_ctx_t   raw_handle,

  363.                  uint8_t     * public_key,
  364.                  size_t      * public_key_length)
  365.  {
  366. -  dhm_context * handle = raw_handle;

  367. +  API (dhm_context) * handle = raw_handle;

  368.  
  369.    assert (handle != NULL);
  370.    assert (public_key != NULL);
  371. @@ -270,8 +287,8 @@ tr_dh_make_key (tr_dh_ctx_t   raw_handle,

  372.    if (public_key_length != NULL)
  373.      *public_key_length = handle->len;
  374.  
  375. -  return check_result (dhm_make_public (handle, private_key_length, public_key,

  376. -                                        handle->len, my_rand, NULL));

  377. +  return check_result (API (dhm_make_public) (handle, private_key_length, public_key,

  378. +                                                      handle->len, my_rand, NULL));

  379.  }
  380.  
  381.  tr_dh_secret_t
  382. @@ -279,26 +296,29 @@ tr_dh_agree (tr_dh_ctx_t     raw_handle,

  383.               const uint8_t * other_public_key,
  384.               size_t          other_public_key_length)
  385.  {
  386. -  dhm_context * handle = raw_handle;

  387. +  API (dhm_context) * handle = raw_handle;

  388.    struct tr_dh_secret * ret;
  389.    size_t secret_key_length;
  390.  
  391.    assert (handle != NULL);
  392.    assert (other_public_key != NULL);
  393.  
  394. -  if (!check_result (dhm_read_public (handle, other_public_key,

  395. -                                      other_public_key_length)))

  396. +  if (!check_result (API (dhm_read_public )(handle, other_public_key,

  397. +                                                    other_public_key_length)))

  398.      return NULL;
  399.  
  400.    ret = tr_dh_secret_new (handle->len);
  401.  
  402.    secret_key_length = handle->len;
  403.  
  404. -#if POLARSSL_VERSION_NUMBER >= 0x01030000

  405. -  if (!check_result (dhm_calc_secret (handle, ret->key,

  406. -                                      &secret_key_length, my_rand, NULL)))

  407. +#if API_VERSION_NUMBER >= 0x02000000

  408. +  if (!check_result (API (dhm_calc_secret) (handle, ret->key, secret_key_length,

  409. +                                                    &secret_key_length, my_rand, NULL)))

  410. +#elif API_VERSION_NUMBER >= 0x01030000

  411. +  if (!check_result (API (dhm_calc_secret) (handle, ret->key,

  412. +                                                    &secret_key_length, my_rand, NULL)))

  413.  #else
  414. -  if (!check_result (dhm_calc_secret (handle, ret->key, &secret_key_length)))

  415. +  if (!check_result (API (dhm_calc_secret) (handle, ret->key, &secret_key_length)))

  416.  #endif
  417.      {
  418.        tr_dh_secret_free (ret);
  419. @@ -324,7 +344,7 @@ tr_rand_buffer (void   * buffer,

  420.    assert (buffer != NULL);
  421.  
  422.    tr_lockLock (rng_lock);
  423. -  ret = check_result (ctr_drbg_random (get_rng (), buffer, length));

  424. +  ret = check_result (API (ctr_drbg_random) (get_rng (), buffer, length));

  425.    tr_lockUnlock (rng_lock);
  426.  
  427.    return ret;
  428. -- 

  429. 2.7.4
  430.