[Swan-commit] Changes to ref refs/heads/master
Paul Wouters
paul at vault.libreswan.fi
Sun Aug 12 18:10:04 UTC 2018
New commits:
commit 28188981651058e7511f6a498a2ae2405f5e0eac
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 12 14:08:31 2018 -0400
lib/programs: sprinkle some more USE_XXX defines and comments
This adds some more use if USE_MD5, USE_SHA1, USE_SHA2 defines.
There are some locations (eg NAT hashes and COOKIE hashes) where
we should be allowed to use sha1/sha2 despite not wanting to support
it for IKE AUTH or AH/ESP. That is currently not supported.
commit ff2c5ea80ed3d7cfff037d4368d039f59fa84ca4
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 12 14:07:05 2018 -0400
pluto: change ikev2_calculate_sighash() from returning void to stf_status
This allows us to compile with USE_SHA2=false or USE_SHA1=false
This also changes asserting on bad_case() to returning STF_FATAL
commit 6f4e128d8638436a0d91ea7555471f130166b472
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 12 12:58:12 2018 -0400
pluto: add comment on ikev2_hash_nss_cert_key() use of SHA1, which should be allowed when USE_SHA1=false
More information about the Swan-commit
mailing list