Allow the user to set his own client certificate

ffontaine · ffontaine · commit 2fa6afe916e8 · 2020-09-17T10:26:40.000+02:00
This will allow the user to use ArduinoBearSSL without the ECCX08 (for
example with an (e)SIM applet compliant to the new GSMA IoT SAFE standard)

Signed-off-by: Fabrice Fontaine &lt;fabrice.fontaine@orange.com&gt;
diff --git a/src/BearSSLClient.cpp b/src/BearSSLClient.cpp
@@ -205,6 +205,11 @@ void BearSSLClient::setEccSign(br_ecdsa_sign sign)
   _ecSign = sign;
 }
 
+void BearSSLClient::setEccCert(br_x509_certificate cert)
+{
+  _ecCert = cert;
+}
+
 void BearSSLClient::setEccSlot(int ecc508KeySlot, const byte cert[], int certLength)
 {
   // HACK: put the key slot info. in the br_ec_private_key structure
diff --git a/src/BearSSLClient.h b/src/BearSSLClient.h
@@ -74,6 +74,8 @@ class BearSSLClient : public Client {
   void setEccVrfy(br_ecdsa_vrfy vrfy);
   void setEccSign(br_ecdsa_sign sign);
 
+  void setEccCert(br_x509_certificate cert);
+
   void setEccSlot(int ecc508KeySlot, const byte cert[], int certLength);
   void setEccSlot(int ecc508KeySlot, const char cert[]);
 

Original file line number	Diff line number	Diff line change
`@@ -205,6 +205,11 @@ void BearSSLClient::setEccSign(br_ecdsa_sign sign)`
`205`	`205`	`_ecSign = sign;`
`206`	`206`	`}`
`207`	`207`
	`208`	`+void BearSSLClient::setEccCert(br_x509_certificate cert)`
	`209`	`+{`
	`210`	`+ _ecCert = cert;`
	`211`	`+}`
	`212`	`+`
`208`	`213`	`void BearSSLClient::setEccSlot(int ecc508KeySlot, const byte cert[], int certLength)`
`209`	`214`	`{`
`210`	`215`	`// HACK: put the key slot info. in the br_ec_private_key structure`