ikev2: Fall back to SHA-1 signatures for RSA

This is really just a fallback to "classic" IKEv2 authentication if the other peer supports no stronger hash algorithms.
2025-10-15 00:00:16 -04:00 · 2015-02-26 17:36:41 +01:00 · 2015-02-26 17:36:41 +01:00 · cc048f0c50
commit cc048f0c50
parent 0bdc79b5f9
1 changed files with 7 additions and 0 deletions
--- a/src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c
+++ b/src/libcharon/sa/ikev2/authenticators/pubkey_authenticator.c
@ -153,6 +153,13 @@ static signature_scheme_t select_signature_scheme(keymat_v2_t *keymat,
 			}
 		}
 		enumerator->destroy(enumerator);
+
+		/* default to the scheme we'd use with classic authentication */
+		if (selected == SIGN_UNKNOWN && key_type == KEY_RSA &&
+			keymat->hash_algorithm_supported(keymat, HASH_SHA1))
+		{
+			selected = SIGN_RSA_EMSA_PKCS1_SHA1;
+		}
 	}
 	return selected;
 }