OpenBSD/src 37oqp7m — sbin/iked crypto.c parse.y
Add support for RFC4754 (ECDSA) and RFC7427 authentication. These modes provide stronger and more flexible ways for authentication: while RSA public key auth relies on SHA-1 hashes, the news modes use SHA2-256 and up to SHA2-512 hashes. Original diff from markus@ with patches from mikeb@ and me. OK mikeb@ patrick@
Version | Delta | File | |
---|---|---|---|
1.20 | +217 | -46 | sbin/iked/crypto.c |
1.62 | +191 | -32 | sbin/iked/parse.y |
1.43 | +140 | -10 | sbin/iked/ca.c |
1.144 | +41 | -8 | sbin/iked/ikev2.c |
1.48 | +22 | -7 | sbin/iked/iked.conf.5 |
1.50 | +11 | -4 | sbin/iked/ikev2_msg.c |
1.26 | +13 | -1 | sbin/iked/ikev2.h |
1.20 | +3 | -2 | sbin/iked/iked.8 |
1.110 | +2 | -1 | sbin/iked/iked.h |
+640 | -111 | 9 files |