[Swan-commit] Changes to ref refs/heads/master
Paul Wouters
paul at vault.libreswan.fi
Mon Mar 23 06:38:15 EET 2015
New commits:
commit 967ca625725aa1ea500c60474b4399f76e3869df
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Mar 22 23:36:39 2015 -0500
pluto: In FIPS mode, skip testing aes_{cbc|ctr|gcm}
These functions use NSS import/export functions without encryption
which is not allowed in FIPS mode. Can be re-enabled if changed to
import/export wrapped in encryption.
commit 3f2e587b0319e3fb49849f1fc0bd2585502f4e2f
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Mar 22 23:35:53 2015 -0500
pluto: Enforce crypto restrictions in FIPS mode
In FIPS mode, do not allow MD5, TWOFISH, SERPENT or CAMELLIA
commit e3f1139a0c3f2bb4ac84bc161cc8ff9fab1c1cdd
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Mar 22 15:03:12 2015 -0500
testing: fixup pk12util to use -K ''
More information about the Swan-commit
mailing list