X-Git-Url: https://git.syn-net.org/?p=debian%2Fuanytun.git;a=blobdiff_plain;f=src%2Finit_crypt.h;fp=src%2Finit_crypt.h;h=2461a541932b25a7fac6854550891961618775d3;hp=0000000000000000000000000000000000000000;hb=aa74a4fd24d8e8537f76531e6257fa90145355d3;hpb=e3f8e33112e2191999c6d6f6b6a767c72db800a0 diff --git a/src/init_crypt.h b/src/init_crypt.h new file mode 100644 index 0000000..2461a54 --- /dev/null +++ b/src/init_crypt.h @@ -0,0 +1,93 @@ +/* + * uAnytun + * + * uAnytun is a tiny implementation of SATP. Unlike Anytun which is a full + * featured implementation uAnytun has no support for multiple connections + * or synchronisation. It is a small single threaded implementation intended + * to act as a client on small platforms. + * The secure anycast tunneling protocol (satp) defines a protocol used + * for communication between any combination of unicast and anycast + * tunnel endpoints. It has less protocol overhead than IPSec in Tunnel + * mode and allows tunneling of every ETHER TYPE protocol (e.g. + * ethernet, ip, arp ...). satp directly includes cryptography and + * message authentication based on the methodes used by SRTP. It is + * intended to deliver a generic, scaleable and secure solution for + * tunneling and relaying of packets of any protocol. + * + * + * Copyright (C) 2007-2010 Christian Pointner + * + * This file is part of uAnytun. + * + * uAnytun is free software: you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation, either version 3 of the License, or + * any later version. + * + * uAnytun is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with uAnytun. If not, see . + */ + +#ifndef UANYTUN_init_crypt_h_INCLUDED +#define UANYTUN_init_crypt_h_INCLUDED + +#ifdef NO_CRYPT + + +int init_crypt() +{ + return 0; +} + + +#else + + +#ifndef USE_SSL_CRYPTO + +#include + +#define MIN_GCRYPT_VERSION "1.2.0" + +int init_crypt() +{ + if(!gcry_check_version(MIN_GCRYPT_VERSION)) { + log_printf(NOTICE, "invalid Version of libgcrypt, should be >= %s", MIN_GCRYPT_VERSION); + return -1; + } + + gcry_error_t err = gcry_control(GCRYCTL_DISABLE_SECMEM, 0); + if(err) { + log_printf(ERROR, "failed to disable secure memory: %s", gcry_strerror(err)); + return -1; + } + + err = gcry_control(GCRYCTL_INITIALIZATION_FINISHED); + if(err) { + log_printf(ERROR, "failed to finish libgcrypt initialization: %s", gcry_strerror(err)); + return -1; + } + + log_printf(NOTICE, "libgcrypt init finished"); + return 0; +} + +#else + +int init_crypt() +{ +// nothing here + return 0; +} + +#endif + + +#endif + +#endif