99fcd56135
The p11-kit remoting was initially introduced because softhsm was crashing during cleanup with OpenSSL 3.0. This was resolved since then and this code introduces a lot of complexity and possible bugs, such as when using the mechanisms from PKCS#11 3.0 that are unknown to the p11-kit remoting tool. It decides to remove them from the list as demonstrated here: https://github.com/p11-glue/p11-kit/issues/668 This resulted in pkcs11-provider not registering EDDSA siganture methods to the OpenSSL and failing when asked to provide a singature by the Ed25519 key from the PKCS#11 token. Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Sahana Prasad <sahana@redhat.com>
72 lines
2.9 KiB
CMake
72 lines
2.9 KiB
CMake
/* OpenSSH capabilities */
|
|
|
|
#cmakedefine OPENSSH_VERSION_MAJOR ${OPENSSH_VERSION_MAJOR}
|
|
#cmakedefine OPENSSH_VERSION_MINOR ${OPENSSH_VERSION_MINOR}
|
|
|
|
#cmakedefine OPENSSH_CIPHERS "${OPENSSH_CIPHERS}"
|
|
#cmakedefine OPENSSH_MACS "${OPENSSH_MACS}"
|
|
#cmakedefine OPENSSH_KEX "${OPENSSH_KEX}"
|
|
#cmakedefine OPENSSH_KEYS "${OPENSSH_KEYS}"
|
|
|
|
|
|
#cmakedefine OPENSSH_3DES_CBC 1
|
|
#cmakedefine OPENSSH_AES128_CBC 1
|
|
#cmakedefine OPENSSH_AES192_CBC 1
|
|
#cmakedefine OPENSSH_AES256_CBC 1
|
|
#cmakedefine OPENSSH_RIJNDAEL_CBC_LYSATOR_LIU_SE 1
|
|
#cmakedefine OPENSSH_AES128_CTR 1
|
|
#cmakedefine OPENSSH_AES192_CTR 1
|
|
#cmakedefine OPENSSH_AES256_CTR 1
|
|
#cmakedefine OPENSSH_AES128_GCM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_AES256_GCM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_CHACHA20_POLY1305_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_BLOWFISH_CBC 1
|
|
#cmakedefine OPENSSH_HMAC_SHA1 1
|
|
#cmakedefine OPENSSH_HMAC_SHA1_96 1
|
|
#cmakedefine OPENSSH_HMAC_SHA2_256 1
|
|
#cmakedefine OPENSSH_HMAC_SHA2_512 1
|
|
#cmakedefine OPENSSH_HMAC_MD5 1
|
|
#cmakedefine OPENSSH_HMAC_MD5_96 1
|
|
#cmakedefine OPENSSH_UMAC_64_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_UMAC_128_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_HMAC_SHA1_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_HMAC_SHA1_96_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_HMAC_SHA2_256_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_HMAC_SHA2_512_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_HMAC_MD5_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_HMAC_MD5_96_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_UMAC_64_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_UMAC_128_ETM_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP1_SHA1 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP14_SHA1 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP14_SHA256 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP16_SHA512 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP18_SHA512 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP_EXCHANGE_SHA1 1
|
|
#cmakedefine OPENSSH_DIFFIE_HELLMAN_GROUP_EXCHANGE_SHA256 1
|
|
#cmakedefine OPENSSH_ECDH_SHA2_NISTP256 1
|
|
#cmakedefine OPENSSH_ECDH_SHA2_NISTP384 1
|
|
#cmakedefine OPENSSH_ECDH_SHA2_NISTP521 1
|
|
#cmakedefine OPENSSH_CURVE25519_SHA256 1
|
|
#cmakedefine OPENSSH_CURVE25519_SHA256_LIBSSH_ORG 1
|
|
#cmakedefine OPENSSH_SNTRUP761X25519_SHA512_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_SSH_ED25519 1
|
|
#cmakedefine OPENSSH_SSH_ED25519_CERT_V01_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_SSH_RSA 1
|
|
#cmakedefine OPENSSH_ECDSA_SHA2_NISTP256 1
|
|
#cmakedefine OPENSSH_ECDSA_SHA2_NISTP384 1
|
|
#cmakedefine OPENSSH_ECDSA_SHA2_NISTP521 1
|
|
#cmakedefine OPENSSH_SSH_RSA_CERT_V01_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_ECDSA_SHA2_NISTP256_CERT_V01_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_ECDSA_SHA2_NISTP384_CERT_V01_OPENSSH_COM 1
|
|
#cmakedefine OPENSSH_ECDSA_SHA2_NISTP521_CERT_V01_OPENSSH_COM 1
|
|
|
|
/* Available programs */
|
|
|
|
#cmakedefine NCAT_EXECUTABLE "${NCAT_EXECUTABLE}"
|
|
#cmakedefine SSHD_EXECUTABLE "${SSHD_EXECUTABLE}"
|
|
#cmakedefine SSH_EXECUTABLE "${SSH_EXECUTABLE}"
|
|
#cmakedefine WITH_TIMEOUT ${WITH_TIMEOUT}
|
|
#cmakedefine TIMEOUT_EXECUTABLE "${TIMEOUT_EXECUTABLE}"
|
|
#cmakedefine SOFTHSM2_LIBRARY "${SOFTHSM2_LIBRARY}"
|
|
#cmakedefine PKCS11SPY "${PKCS11SPY}"
|