projects / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 708dff0) | patch
tkm: Disable RFC 7427 signature authentication
authorTobias Brunner <tobias@strongswan.org>
Fri, 6 Mar 2015 15:10:41 +0000 (16:10 +0100)
committerTobias Brunner <tobias@strongswan.org>
Mon, 9 Mar 2015 15:59:07 +0000 (16:59 +0100)
commitab65a3e8fc1a3ca4c6e72e11af84d2f51abf6db9
treef5930ca0eb640af08037a0ed6d4af6ddc6876941tree | snapshot
parent708dff0700889f46aae0023b0e97d987425ae901commit | diff
tkm: Disable RFC 7427 signature authentication

TKM can't verify such signatures so we'd fail in the authorize hook.
Skipping the algorithm identifier doesn't help if the peer uses
anything other than SHA-1, so config changes would be required.
src/charon-tkm/src/charon-tkm.c diff | blob | history
strongSwan - IPsec VPN