]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: 8b8a2ee f619b83)
Merge branch 'ikev2-kdf-modularization'
authorTobias Brunner <tobias@strongswan.org>
Thu, 14 Apr 2022 17:03:03 +0000 (19:03 +0200)
committerTobias Brunner <tobias@strongswan.org>
Thu, 14 Apr 2022 17:03:03 +0000 (19:03 +0200)
commit94a3563c685d2d0a2c2bb0a28b915fd524d6251b
tree26f12c411c37e2aba0ab62e62fee9ad1e4c6cdfetree
parent8b8a2ee43adbfa0eb3d9052af7c5dcaa70f08c71commit | diff
parentf619b833accf6014f6aa6efdce98cea9b395b4cacommit | diff
Merge branch 'ikev2-kdf-modularization'

This modularizes the IKEv2 key derivation, which makes certification (e.g.
FIPS) easier because it allows the two steps (PRF/prf+) to be implemented
by already certified third-party libraries.

For the existing third-party libraries, the two KDFs are implemented via
the respective library's HKDF implementation.  A generic implementation,
based on existing PRFs, is provided by the new kdf plugin.
Unnamed repository; edit this file 'description' to name the repository.