[Swan-commit] Changes to ref refs/heads/main
Andrew Cagney
cagney at vault.libreswan.fi
Fri Mar 25 23:03:14 EET 2022
New commits:
commit 538b1258a13667a807413d8ff1aceb63037c1de1
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 25 17:01:57 2022 -0400
testing: make ikev2-x509-ecdsa-03-legacy-{initiator,responder} good
commit ee71581ffa2ff0ee49f34c53362aa6db362ad4f5
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 25 16:58:27 2022 -0400
ikev2: for ECDSA add fallback to legacy ECDSA_SHA2_NNN_Pxxx authentication
- like for RSA, only use Digital Signature ECDSA when peer sent
N(SIGNATURE_HASH_ALGORITHMS)
- as fallback, based on the local haso policy, magic up one of the
ECDSA_SHA2_NNN_Pxxx authentication methods
This code should really be making the decision based on the pubkey.
More information about the Swan-commit
mailing list