[Swan-commit] Changes to ref refs/heads/main
Andrew Cagney
cagney at vault.libreswan.fi
Sat Mar 19 03:13:03 EET 2022
New commits:
commit d26f5ac6af906318caf37d125633355d4c3d12ea
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 18 16:41:20 2022 -0400
testing: add ikev2-x509-ecdsa-03-legacy
commit 18134f7bfe1b0e84434a0a6efa0a282ee06ee15e
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu Mar 17 15:27:56 2022 -0400
ikev2: add preliminary code for RFC 4745 ECDSA SHA2 AUTH payloads
Currently the only way to test this is by using --impair force-v2-auth-method:...
on both ends, see ikev2-x509-ecdsa-03-legacy.
Minimally needs an interop. Even the signature which seems to be
ASN.1 sequence with two points is untested.
commit 1000e91d7c4c41554af387dd307742bd88021810
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 18 15:21:21 2022 -0400
ikev2: pass the signature PBS into v2_authsig_and_log_using_pubkey()
simplify callers
commit e6abbb480146e0b4795680efdfb93a3ec35bf8ed
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 18 15:05:17 2022 -0400
ikev2: factor submit_v2_IKE_AUTH_response_signature() out of generate_v2_responder_auth()
mac+submit signature code
commit 73dcfae8d40411d3e793aeee61d3405db4adc29b
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 18 15:23:26 2022 -0400
ikev2: factor submit_v2_IKE_AUTH_request_signature() out of initiate_v2_IKE_AUTH_request()
combine mac+submit code
commit 01528947bd28f0e3fece3d54360d655f63e2dfb3
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 18 14:43:38 2022 -0400
ikev2: add --impair force-v2-auth-method:METHOD_NAME
commit bdce84f4a766227991441de232c7b4590d4186af
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu Mar 17 23:22:03 2022 -0400
ikev2: clarify authentication method names
(at least the ones that aren't used)
For instance, IKEv2_AUTH_P521 -> IKEv2_AUTH_ECDSA_SHA2_512_P521
More information about the Swan-commit
mailing list