diff options
Diffstat (limited to 'src/init_crypt.h')
-rw-r--r-- | src/init_crypt.h | 93 |
1 files changed, 93 insertions, 0 deletions
diff --git a/src/init_crypt.h b/src/init_crypt.h new file mode 100644 index 0000000..24077db --- /dev/null +++ b/src/init_crypt.h @@ -0,0 +1,93 @@ +/* + * uAnytun + * + * uAnytun is a tiny implementation of SATP. Unlike Anytun which is a full + * featured implementation uAnytun has no support for multiple connections + * or synchronisation. It is a small single threaded implementation intended + * to act as a client on small platforms. + * The secure anycast tunneling protocol (satp) defines a protocol used + * for communication between any combination of unicast and anycast + * tunnel endpoints. It has less protocol overhead than IPSec in Tunnel + * mode and allows tunneling of every ETHER TYPE protocol (e.g. + * ethernet, ip, arp ...). satp directly includes cryptography and + * message authentication based on the methodes used by SRTP. It is + * intended to deliver a generic, scaleable and secure solution for + * tunneling and relaying of packets of any protocol. + * + * + * Copyright (C) 2007-2008 Christian Pointner <equinox@anytun.org> + * + * This file is part of uAnytun. + * + * uAnytun is free software: you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation, either version 3 of the License, or + * any later version. + * + * uAnytun is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with uAnytun. If not, see <http://www.gnu.org/licenses/>. + */ + +#ifndef UANYTUN_init_crypt_h_INCLUDED +#define UANYTUN_init_crypt_h_INCLUDED + +#ifdef NO_CRYPT + + +int init_crypt() +{ + return 0; +} + + +#else + + +#ifndef USE_SSL_CRYPTO + +#include <gcrypt.h> + +#define MIN_GCRYPT_VERSION "1.2.0" + +int init_crypt() +{ + if(!gcry_check_version(MIN_GCRYPT_VERSION)) { + log_printf(NOTICE, "invalid Version of libgcrypt, should be >= %s", MIN_GCRYPT_VERSION); + return -1; + } + + gcry_error_t err = gcry_control(GCRYCTL_DISABLE_SECMEM, 0); + if(err) { + log_printf(ERROR, "failed to disable secure memory: %s", gcry_strerror(err)); + return -1; + } + + err = gcry_control(GCRYCTL_INITIALIZATION_FINISHED); + if(err) { + log_printf(ERROR, "failed to finish libgcrypt initialization: %s", gcry_strerror(err)); + return -1; + } + + log_printf(NOTICE, "libgcrypt init finished"); + return 0; +} + +#else + +int init_crypt() +{ +// nothing here + return 0; +} + +#endif + + +#endif + +#endif |