use SHA512 for moon's BLISS signature
authorAndreas Steffen <andreas.steffen@strongswan.org>
Wed, 4 Mar 2015 13:08:37 +0000 (14:08 +0100)
committerAndreas Steffen <andreas.steffen@strongswan.org>
Wed, 4 Mar 2015 13:08:37 +0000 (14:08 +0100)
testing/tests/ikev2/rw-ntru-bliss/evaltest.dat
testing/tests/ikev2/rw-ntru-bliss/hosts/moon/etc/ipsec.conf

index cfc23ed..5a88b66 100644 (file)
@@ -1,9 +1,9 @@
-carol::cat /var/log/daemon.log::authentication of.*moon.strongswan.org.*with BLISS_WITH_SHA384 successful::YES
+carol::cat /var/log/daemon.log::authentication of.*moon.strongswan.org.*with BLISS_WITH_SHA512 successful::YES
 carol::ipsec statusall 2> /dev/null::home.*IKE proposal: AES_CBC_128/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/NTRU_128::YES
 carol::ipsec status 2> /dev/null::home.*ESTABLISHED.*carol@strongswan.org.*moon.strongswan.org::YES
 carol::ipsec status 2> /dev/null::home.*INSTALLED, TUNNEL::YES
 carol::ping -c 1 PH_IP_ALICE::64 bytes from PH_IP_ALICE: icmp_req=1::YES
-dave::cat /var/log/daemon.log::authentication of.*moon.strongswan.org.*with BLISS_WITH_SHA384 successful::YES
+dave::cat /var/log/daemon.log::authentication of.*moon.strongswan.org.*with BLISS_WITH_SHA512 successful::YES
 dave:: ipsec statusall 2> /dev/null::home.*IKE proposal: AES_CBC_192/HMAC_SHA2_384_192/PRF_HMAC_SHA2_384/NTRU_192::YES
 dave:: ipsec status 2> /dev/null::home.*ESTABLISHED.*dave@strongswan.org.*moon.strongswan.org::YES
 dave:: ipsec status 2> /dev/null::home.*INSTALLED, TUNNEL::YES
index d2d2b21..2a9b33a 100644 (file)
@@ -17,6 +17,7 @@ conn rw
        left=PH_IP_MOON
        leftsubnet=10.1.0.0/16
        leftcert=moonCert.der
+       leftauth=bliss-sha512
        leftid=moon.strongswan.org
        leftfirewall=yes
        right=%any