On Thu, Sep 09, 2010 at 12:30 +0200, Mike Belopuhov wrote:
> On Wed, Sep 08, 2010 at 19:29 +0200, Mike Belopuhov wrote:
> > changes:
> >
> > made sure that we won't generate quick mode config strings
> > with gcm and other hashes (the very first hunk of the diff).
> > pointed out by naddy.
> >
>
On Wed, Sep 08, 2010 at 19:29 +0200, Mike Belopuhov wrote:
> changes:
>
> made sure that we won't generate quick mode config strings
> with gcm and other hashes (the very first hunk of the diff).
> pointed out by naddy.
>
proper diff this time. spotted by naddy.
Index: conf.c
=
changes:
made sure that we won't generate quick mode config strings
with gcm and other hashes (the very first hunk of the diff).
pointed out by naddy.
Index: conf.c
===
RCS file: /home/cvs/src/sbin/isakmpd/conf.c,v
retrieving revisio
On Sun, Sep 05, 2010 at 19:28 +0200, Mike Belopuhov wrote:
> On Sun, Sep 05, 2010 at 16:49 +, Christian Weisgerber wrote:
> > Mike Belopuhov wrote:
> >
> > > note that it defaults to AESGCM-256 (i did it this way because
> > > linux picks largest key).
> >
> > I don't understand that rationa
On Sun, Sep 05, 2010 at 16:49 +, Christian Weisgerber wrote:
> Mike Belopuhov wrote:
>
> > note that it defaults to AESGCM-256 (i did it this way because
> > linux picks largest key).
>
> I don't understand that rationale.
>
> A side effect of this is that you now get different key sizes if
Mike Belopuhov wrote:
> note that it defaults to AESGCM-256 (i did it this way because
> linux picks largest key).
I don't understand that rationale.
A side effect of this is that you now get different key sizes if
you specify "aes-gcm" in a manual SA (128) or an IKE rule (256).
--
Christian
isakmpd part. both initiator and responder modes work fine.
tested against strongswan/pluto and itself.
note that it defaults to AESGCM-256 (i did it this way because
linux picks largest key).
Index: conf.c
===
RCS file: /home/cvs/s
