Enable loading x509 certificates from filesystem

facchinm · facchinm · commit 34f358c9a602 · 2020-07-30T14:35:12.000+02:00
diff --git a/features/mbedtls/src/x509_crt.c b/features/mbedtls/src/x509_crt.c
@@ -80,7 +80,11 @@
 #if !defined(_WIN32) || defined(EFIX64) || defined(EFI32)
 #include <sys/types.h>
 #include <sys/stat.h>
+#if defined(__MBED__)
+#include <platform/mbed_retarget.h>
+#else
 #include <dirent.h>
+#endif /* __MBED__ */
 #endif /* !_WIN32 || EFIX64 || EFI32 */
 #endif
 
diff --git a/features/netsocket/TLSSocketWrapper.cpp b/features/netsocket/TLSSocketWrapper.cpp
@@ -103,8 +103,15 @@ nsapi_error_t TLSSocketWrapper::set_root_ca_cert(const void *root_ca, size_t len
 
     /* Parse CA certification */
     int ret;
-    if ((ret = mbedtls_x509_crt_parse(crt, static_cast<const unsigned char *>(root_ca),
-                                      len)) != 0) {
+    switch (len) {
+#if defined(MBEDTLS_FS_IO)
+    case 0:
+        ret = mbedtls_x509_crt_parse_path(crt, static_cast<const char *>(root_ca));
+#endif
+    default:
+        ret = mbedtls_x509_crt_parse(crt, static_cast<const unsigned char *>(root_ca), len);
+    }
+    if (ret != 0) {
         print_mbedtls_error("mbedtls_x509_crt_parse", ret);
         mbedtls_x509_crt_free(crt);
         delete crt;
