QuasarApp/qca
4
0
Fork 0
mirror of https://github.com/QuasarApp/qca.git synced 2025-05-12 02:39:34 +00:00
Code Issues Projects Releases Wiki Activity
2,333 Commits 6 Branches 18 Tags
f9fc3f356f
Commit Graph

67 Commits

Author SHA1 Message Date
Albert Astals Cid
f9fc3f356f remove unused variables 2020-01-24 10:46:27 +01:00
Albert Astals Cid
dbef5838d4 Enable QT_NO_SIGNALS_SLOTS_KEYWORDS 2020-01-22 19:31:28 +01:00
Albert Astals Cid
61daaffee6 openssl: Reenable whirpool 
If that means ancient openssl don't work, that's the problem of people
using ancient openssl
 2020-01-20 22:49:09 +01:00
Laurent Montel
acb45eeb84 Use nullptr 2020-01-20 13:37:51 +01:00
Albert Astals Cid
70406170f5 Cleanup Qt version checks 2020-01-19 17:57:35 +01:00
Albert Astals Cid
83c23c7a3a QTime -> QElapsedTimer 2020-01-19 17:32:15 +01:00
Albert Astals Cid
00d311d90f Add override 2020-01-19 16:28:44 +01:00
Alexander Volkov
32343842d3 Fix build with botan < 2 and openssl < 1.1 
Summary:
This commit amends f57d661416ecbdfbf9c16d8116c296cfdcbeb7d6.
HKDF support was added only in the new versions of the libs.

Reviewers: dfaure, bcooksley

Reviewed By: dfaure

Differential Revision: https://phabricator.kde.org/D16248
 2018-10-17 14:54:34 +03:00
Alexander Volkov
f57d661416 Introduce HKDF 
Summary:
It's needed for implementation of Secret Service:
https://specifications.freedesktop.org/secret-service/ch07s03.html

Reviewers: iromanov, sitter, #frameworks, dfaure

Reviewed By: dfaure

Subscribers: dfaure

Differential Revision: https://phabricator.kde.org/D15510
 2018-10-15 14:30:05 +03:00
Harald Sitter
da4d1d06d4 Openssl fix deprecation warnings 
Summary:
Openssl fix deprecation warnings

Removed unused function: X509_SIG_getm

deprecated warnings for:
ASN1_STRING_data
DSA_generate_parameters
RSA_generate_key
RAND_pseudo_bytes

Tested with openssl-1.0.2l on ubuntu:14.04
Deprecation warning spotted with openssl-1.1.0.g-1

one deprecation warning left: TLSv1_client_method

Reviewers: sitter, fvogt

Reviewed By: fvogt

Differential Revision: https://phabricator.kde.org/D11616
 2018-06-19 11:46:09 +02:00
Fabian Vogt
d58e20ee65 Add support for OpenSSL 1.1.0 
Test Plan:
Ran the testsuite with OpenSSL 1.1.0g and 1.0.2j, all passed.
Using this code with kdeconnect and okteta successfully on my system now.

Reviewers: iromanov

Subscribers: anthonyfieroni, alonbl, heikobecker, cfeck, asturmlechner, bero, rdieter

Differential Revision: https://phabricator.kde.org/D9416
 2018-01-04 20:02:38 +01:00
Ivan Romanov
57878ff44f Add support for AES GCM and AES CCM modes 
Only qca-openssl now can use GCM and CCM. CCM is not tested and
planed for future.
 2016-09-19 10:48:11 +05:00
Raphael Kubo da Costa
84f53aea25 qca-ossl: Remove SHA0 from all_hash_types() when it is not available. 
Commit 0dbed8e ("qca-ossl: Fix build without support for SHA-0") forgot
to add an #ifdef check for SHA0 support in all_hash_types().

REVIEW: 128700
 2016-08-18 08:52:57 +02:00
Heiko Becker
0dbed8eb38 qca-ossl: Fix build without support for SHA-0 
LibreSSL >= 2.3.0 removed support for SHA-0, so there's no EVP_sha
anymore.
Wikipedia says about SHA-0: "160-bit hash function published in 1993
under the name SHA. It was withdrawn shortly after publication due to
an undisclosed "significant flaw" and replaced by the slightly revised
version SHA-1.'

REVIEW: 125387
 2015-10-28 22:06:21 +01:00
Heiko Becker
20a587d776 qca-ossl: Fix build without SSLv3 
This fixes building with LibreSSL >= 2.3.0 which has removed support
for SSLv3 completely. As far as I know OpenSSL can be configured to
build without it, so it might be helpful there as well.

REVIEW: 125386
 2015-10-28 22:05:59 +01:00
Heiko Becker
593de6855a Fix build with libressl 
libressl removed the SSL Compression functionality (which might
be considered insecure) and thus also compress_meth.
SSL_SESSION_get_compress_id is just a stub in libressl which always
returns 0 and in openssl it returns compress_meth.

REVIEW: 121107
 2014-11-13 14:23:54 +05:00
Ivan Romanov
72457bee3a qca-ossl: fixed compilation warnings 2014-11-13 02:13:50 +05:00
Ivan Romanov
58e9539513 qca-ossl: added missed signatures 2014-11-06 12:16:27 +05:00
Ivan Romanov
638a8aff5c qca-ossl: no DSA_* dl groups in FIPS specification 2014-11-05 11:49:14 +05:00
Adnan RIHAN
9e0ddb716d Overloaded "makeKey" to derive a password depending on a time factor 
Overloaded "makeKey" in QCA::KeyDerivationFunction + botan/gcrypt/ossl plugins
to allow deriving a master password depending on a time factor in addition to
only giving an arbitrary iteration count.
Deriving with a time delays exhaustive research on master passwords by
increasing the time needed to try each password (the derivation time)
Added corresponding unittests.

REVIEW: 114503
 2014-01-06 18:38:21 +01:00
Adnan RIHAN
17cf1841f7 RSA Keys are permutable, can encrypt with private and decrypt with public 
[REVIEW]: 114416
 2013-12-17 06:57:26 +01:00
Ivan Romanov
ea239aaf96 [ossl] fixed certs time zone 2013-12-09 03:32:59 +06:00
Ivan Romanov
4e535d25e5 Fixed IID for all plugins 
In Qt5 plugin IID is the same as identifier from Q_DECLARE_INTERFACE
 2013-11-21 11:31:13 +06:00
Ivan Romanov
2d1d815ab2 less warnings 2013-11-17 16:22:35 +06:00
Ivan Romanov
ab7ec14047 fixed rsa decription when no e or d 
When private key has no Public Exponent (e) or Private Exponent (d)
need to disable blinding. Otherwise decryption will be broken.
http://www.mail-archive.com/openssl-users@openssl.org/msg63530.html
 2013-11-17 16:09:14 +06:00
Ivan Romanov
e2ab61c10e Implement EME_PKCS1v15_SSL and EME_NO_PADDING in qca-ossl plugin 2013-11-17 02:33:26 +06:00
Ivan Romanov
0a8b9db661 [qca-ossl] compiling without AES CTR 
Actual openssl versions might have no AES CTR.
In this case qca-ossl will be compiled without AES CTR.

Also dropped own obsoletes FindOpenSSL.cmake.
System version is better choice.
 2013-08-25 14:47:36 +06:00
Ivan Romanov
4320c6532b [qca-ossl] added support for aes ctr 128, 192 and 256 2013-08-25 03:36:58 +06:00
Ivan Romanov
4dcfaae8ab [qca-ossl] tabify sources 
svn path=/trunk/kdesupport/qca/; revision=1358066
 2013-06-21 14:36:30 +00:00
David Faure
7d073db453 Finish port to Qt5: plugins. Patch by Ivan Romanov. 
svn path=/trunk/kdesupport/qca/; revision=1347518
 2013-04-02 12:41:12 +00:00
Justin Karneges
d349189b84 retrieve peer certificate chain. on mac, attempt to workaround openssl bugs 
that apple introduced by validating the peer chain independent of ssl.

svn path=/trunk/kdesupport/qca/; revision=1311233
 2012-08-17 01:05:56 +00:00
Justin Karneges
748af8203e fix compile when openssl doesn't support ssl2 
svn path=/trunk/kdesupport/qca/; revision=1230301
 2011-05-03 19:03:10 +00:00
Justin Karneges
6f02652a99 fix bug in dsa signature generation when using IEEE_1363 format 
svn path=/trunk/kdesupport/qca/; revision=1190163
 2010-10-27 07:40:01 +00:00
Justin Karneges
54fe377ee0 support for rsa decryption with keys of other providers (e.g. pkcs11) 
svn path=/trunk/kdesupport/qca/; revision=1179193
 2010-09-24 19:42:02 +00:00
Maciej Mrozowski
38a76161a3 Actually detect whether MD2 is avalable for OpenSSL plugin 
CCMAIL: fundawang@linux.net.cn

svn path=/trunk/kdesupport/qca/; revision=1115936
 2010-04-18 01:59:31 +00:00
Funda Wang
ddbc7a0da5 conditional build md2 support 
svn path=/trunk/kdesupport/qca/; revision=1111902
 2010-04-07 00:24:14 +00:00
Justin Karneges
0e18d679bd make sure EVPKey does not use uninitialized data 
svn path=/trunk/kdesupport/qca/; revision=997267
 2009-07-15 17:13:37 +00:00
Brad Hards
5af426b83a Add support for certificates with SHA2 family digest algorithms. 
svn path=/trunk/kdesupport/qca/; revision=992617
 2009-07-07 12:24:51 +00:00
Bernhard Rosenkraenzer
0ce797a909 Make it build (and work) with OpenSSL 1.0 betas 
svn path=/trunk/kdesupport/qca/; revision=978853
 2009-06-08 11:08:43 +00:00
Justin Karneges
5a2cde805b fix warning 
svn path=/trunk/kdesupport/qca/; revision=864425
 2008-09-24 19:23:30 +00:00
Justin Karneges
d8619e1dd1 remove whirlpool usage. the algorithm is missing on at least 0.9.8g and 
0.9.8i, even though there's an OBJ_whirlpool definition in 0.9.8i.

svn path=/trunk/kdesupport/qca/; revision=864423
 2008-09-24 19:22:26 +00:00
Sean Harmer
8055efb814 Fixing a memory leak reported by valgrind when encrypting data usng PKCS7_encrypt. 
svn path=/trunk/kdesupport/qca/; revision=848615
 2008-08-18 09:08:51 +00:00
Justin Karneges
13e3d34027 patch from Michael Leupold for random support 
svn path=/trunk/kdesupport/qca/; revision=820011
 2008-06-12 21:11:53 +00:00
Justin Karneges
b869b3f291 always request a certificate from the client when in server mode 
svn path=/trunk/kdesupport/qca/; revision=777109
 2008-02-19 19:09:12 +00:00
Justin Karneges
8034ea2b3a compile on msvc6 
svn path=/trunk/kdesupport/qca/; revision=777103
 2008-02-19 18:53:39 +00:00
Brad Hards
d7ccec1e6d Add support for Password Based Key Derivation Function 2 
(per RFC2898) for the OpenSSL-based provider.

We need this for decrypting OOo encrypted documents. It is
present in the libgcrypt and Botan based providers, but they
aren't released.

svn path=/trunk/kdesupport/qca/; revision=747138
 2007-12-11 06:34:57 +00:00
Justin Karneges
d5d180d27d allow X509Item to be assigned in the same way it can be copied 
svn path=/trunk/kdesupport/qca/; revision=737612
 2007-11-16 19:11:04 +00:00
Justin Karneges
beb62607cc fix for notValidBefore/notValidAfter values when CA signing 
svn path=/trunk/kdesupport/qca/; revision=733311
 2007-11-06 07:09:20 +00:00
Justin Karneges
702f2a5662 initial CA support 
svn path=/trunk/kdesupport/qca/; revision=733263
 2007-11-05 23:55:30 +00:00
Justin Karneges
8b52677483 "undefined interface" moc workaround 
http://forum.psi-im.org/thread/4686

svn path=/trunk/kdesupport/qca/; revision=732927
 2007-11-05 05:21:51 +00:00