[Swan-commit] Changes to ref refs/heads/master

D. Hugh Redelmeier hugh at vault.libreswan.fi
Fri Jan 25 19:40:41 UTC 2019


New commits:
commit e2f90260df07f690d76b3be71223d216aee3e89a
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Fri Jan 25 14:18:10 2019 -0500

    Pluto: improve ikev2_calc_no_ppk_auth some more
    
    - fix bugs where NEGOTIATE_AUTH_HASH_SHA2_384 and NEGOTIATE_AUTH_HASH_SHA2_256
      used wrong ASN.1 blobs (RSA_PSS_SHA512_BLOB)
    
    - fix bugs where error returns were ignored.  But it isn't clear
      (a) what diagnostic should be issued (at the moment: none)
      (b) whether STF_FATAL or STF_INTERNAL_ERROR is appropriate.
    
    - fix what I think is a bug: change a test from
    	c->sighash_policy == POL_SIGHASH_NONE
      to
    	c->sighash_policy & POL_SIGHASH_NONE
    
    - exploit asn1_rsa_pss_sha2_* to simplify the code
    
    - untested: beware



More information about the Swan-commit mailing list