Accepting request 262968 from network:vpn

- Updated strongswan-hmac package description (bsc#856322). - Disabled explicit gpg validation; osc source_validator does it. - Guarded fipscheck and hmac package in the spec file for >13.1. - Added generation of fips hmac hash files using fipshmac utility and a _fipscheck script to verify binaries/libraries/plugings shipped in the strongswan-hmac package. With enabled fips in the kernel, the ipsec script will call it before any action or in a enforced/manual "ipsec _fipscheck" call. Added config file to load openssl and kernel af-alg plugins, but not all the other modules which provide further/alternative algs. Applied a filter disallowing non-approved algorithms in fips mode. (fate#316931,bnc#856322). [+ strongswan_fipscheck.patch, strongswan_fipsfilter.patch] - Fixed file list in the optional (disabled) strongswan-test package. - Fixed build of the strongswan built-in integrity checksum library and enabled building it only on architectures tested to work. - Fix to use bug number 897048 instead 856322 in last changes entry. - Applied an upstream patch reverting to store algorithms in the registration order again as ordering them by identifier caused weaker algorithms to be proposed first by default (bsc#897512). [+0001-restore-registration-algorithm-order.bug897512.patch] - Re-enabled gcrypt plugin and reverted to not enforce fips again as this breaks gcrypt and openssl plugins when the fips pattern option is not installed (fate#316931,bnc#856322). [- strongswan-fips-disablegcrypt.patch] - Added empty strongswan-hmac package supposed to provide fips hmac files and enforce fips compliant operation later (bnc#856322). OBS-URL: https://build.opensuse.org/request/show/262968 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/strongswan?expand=0&rev=58
2014-11-26 09:33:53 +00:00 · 2014-11-26 09:33:53 +00:00 · 1902611f9f
commit 1902611f9f
parent 8b662f08a7 820c7f86b7
9 changed files with 1169 additions and 49 deletions
--- a/0001-restore-registration-algorithm-order.bug897512.patch
+++ b/0001-restore-registration-algorithm-order.bug897512.patch
@ -0,0 +1,413 @@
 From 76ad8a6f4c83c999b9eb6d1a3506b1a8e593307e Mon Sep 17 00:00:00 2001
 From: Tobias Brunner <tobias@strongswan.org>
 Date: Fri, 20 Jun 2014 16:22:15 +0200
 Subject: [PATCH] Merge branch 'algorithm-order'
 Upstream: yes
 References: bsc#897512
 Restores the behavior we had before 2e22333fb (except for RNGs), that is,
 algorithms are stored in the registration order again.  Which is not optimal
 as we must rely on plugins to register them in a sensible order, but ordering
 them by identifier definitely caused weaker algorithms to be proposed first
 in the default proposal, which was even worse.
 ---
 src/libstrongswan/crypto/crypto_factory.c          |  18 +-
 src/libstrongswan/tests/Makefile.am                |   1 +
 .../tests/suites/test_crypto_factory.c             | 312 +++++++++++++++++++++
 src/libstrongswan/tests/tests.h                    |   1 +
 4 files changed, 327 insertions(+), 5 deletions(-)
 create mode 100644 src/libstrongswan/tests/suites/test_crypto_factory.c
 diff --git a/src/libstrongswan/crypto/crypto_factory.c b/src/libstrongswan/crypto/crypto_factory.c
 index 6dea30e..96fbc0d 100644
 --- a/src/libstrongswan/crypto/crypto_factory.c
 +++ b/src/libstrongswan/crypto/crypto_factory.c
@@ -392,10 +392,10 @@ METHOD(crypto_factory_t, create_dh, diffie_hellman_t*,
 /**
  * Insert an algorithm entry to a list
  *
 - * Entries are sorted by algorithm identifier (which is important for RNGs)
 - * while maintaining the order in which algorithms were added, unless they were
 + * Entries maintain the order in which algorithms were added, unless they were
  * benchmarked and speed is provided, which then is used to order entries of
  * the same algorithm.
 + * An exception are RNG entries, which are sorted by algorithm identifier.
  */
 static void add_entry(private_crypto_factory_t *this, linked_list_t *list,
 					  int algo, const char *plugin_name,
@@ -403,6 +403,7 @@ static void add_entry(private_crypto_factory_t *this, linked_list_t *list,
 {
 	enumerator_t *enumerator;
 	entry_t *entry, *current;
 +	bool sort = (list == this->rngs), found = FALSE;
 	INIT(entry,
 		.algo = algo,
@@ -415,12 +416,19 @@ static void add_entry(private_crypto_factory_t *this, linked_list_t *list,
 	enumerator = list->create_enumerator(list);
 	while (enumerator->enumerate(enumerator, &current))
 	{
 -		if (current->algo > algo)
 +		if (sort && current->algo > algo)
 		{
 			break;
 		}
 -		else if (current->algo == algo && speed &&
 -				 current->speed < speed)
 +		else if (current->algo == algo)
 +		{
 +			if (speed > current->speed)
 +			{
 +				break;
 +			}
 +			found = TRUE;
 +		}
 +		else if (found)
 		{
 			break;
 		}
 diff --git a/src/libstrongswan/tests/Makefile.am b/src/libstrongswan/tests/Makefile.am
 index 331a548..0bdf2b3 100644
 --- a/src/libstrongswan/tests/Makefile.am
 +++ b/src/libstrongswan/tests/Makefile.am
@@ -42,6 +42,7 @@ tests_SOURCES = tests.h tests.c \
   suites/test_host.c \
   suites/test_hasher.c \
   suites/test_crypter.c \
 +  suites/test_crypto_factory.c \
   suites/test_pen.c \
   suites/test_asn1.c \
   suites/test_asn1_parser.c \
 diff --git a/src/libstrongswan/tests/suites/test_crypto_factory.c b/src/libstrongswan/tests/suites/test_crypto_factory.c
 new file mode 100644
 index 0000000..94f45da
 --- /dev/null
 +++ b/src/libstrongswan/tests/suites/test_crypto_factory.c
@@ -0,0 +1,312 @@
 +/*
 + * Copyright (C) 2014 Tobias Brunner
 + * Hochschule fuer Technik Rapperswil
 + *
 + * This program is free software; you can redistribute it and/or modify it
 + * under the terms of the GNU General Public License as published by the
 + * Free Software Foundation; either version 2 of the License, or (at your
 + * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
 + *
 + * This program is distributed in the hope that it will be useful, but
 + * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
 + * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 + * for more details.
 + */
 +
 +#include "test_suite.h"
 +
 +#include <crypto/crypto_factory.h>
 +
 +static rng_t *rng_create(rng_quality_t quality)
 +{
 +	rng_quality_t *q = malloc_thing(rng_quality_t);
 +	*q = quality;
 +	return (rng_t*)q;
 +}
 +
 +static rng_t *rng_create_weak(rng_quality_t quality)
 +{
 +	ck_assert(quality == RNG_WEAK);
 +	return rng_create(RNG_WEAK);
 +}
 +
 +static rng_t *rng_create_strong(rng_quality_t quality)
 +{
 +	ck_assert(quality <= RNG_STRONG);
 +	return rng_create(RNG_STRONG);
 +}
 +
 +static rng_t *rng_create_true(rng_quality_t quality)
 +{
 +	ck_assert(quality <= RNG_TRUE);
 +	return rng_create(RNG_TRUE);
 +}
 +
 +static rng_t *rng_create_true_second(rng_quality_t quality)
 +{
 +	fail("should never be called");
 +	return rng_create(RNG_TRUE);
 +}
 +
 +static rng_quality_t rng_weak = RNG_WEAK;
 +static rng_quality_t rng_strong = RNG_STRONG;
 +static rng_quality_t rng_true = RNG_TRUE;
 +
 +static struct {
 +	rng_quality_t *exp_weak;
 +	rng_quality_t *exp_strong;
 +	rng_quality_t *exp_true;
 +	struct {
 +		rng_quality_t *q;
 +		rng_constructor_t create;
 +	} data[4];
 +} rng_data[] = {
 +	{ NULL, NULL, NULL, {
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_weak, NULL, NULL, {
 +		{ &rng_weak, rng_create_weak },
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_strong, &rng_strong, NULL, {
 +		{ &rng_strong, rng_create_strong },
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_true, &rng_true, &rng_true, {
 +		{ &rng_true, rng_create_true },
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_true, &rng_true, &rng_true, {
 +		{ &rng_true, rng_create_true },
 +		{ &rng_true, rng_create_true_second },
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_weak, &rng_true, &rng_true, {
 +		{ &rng_weak, rng_create_weak },
 +		{ &rng_true, rng_create_true },
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_weak, &rng_strong, &rng_true, {
 +		{ &rng_true, rng_create_true },
 +		{ &rng_strong, rng_create_strong },
 +		{ &rng_weak, rng_create_weak },
 +		{ NULL, NULL }
 +	}},
 +	{ &rng_weak, &rng_strong, &rng_true, {
 +		{ &rng_weak, rng_create_weak },
 +		{ &rng_strong, rng_create_strong },
 +		{ &rng_true, rng_create_true },
 +		{ NULL, NULL }
 +	}},
 +};
 +
 +static void verify_rng(crypto_factory_t *factory, rng_quality_t request,
 +					   rng_quality_t *expected)
 +{
 +	rng_quality_t *res;
 +
 +	res = (rng_quality_t*)factory->create_rng(factory, request);
 +	if (!expected)
 +	{
 +		ck_assert(!res);
 +	}
 +	else
 +	{
 +		ck_assert(res);
 +		ck_assert_int_eq(*expected, *res);
 +		free(res);
 +	}
 +}
 +
 +START_TEST(test_create_rng)
 +{
 +	crypto_factory_t *factory;
 +	int i;
 +
 +	factory = crypto_factory_create();
 +	for (i = 0; rng_data[_i].data[i].q; i++)
 +	{
 +		ck_assert(factory->add_rng(factory, *rng_data[_i].data[i].q, "test",
 +								   rng_data[_i].data[i].create));
 +	}
 +	verify_rng(factory, RNG_WEAK, rng_data[_i].exp_weak);
 +	verify_rng(factory, RNG_STRONG, rng_data[_i].exp_strong);
 +	verify_rng(factory, RNG_TRUE, rng_data[_i].exp_true);
 +	for (i = 0; rng_data[_i].data[i].q; i++)
 +	{
 +		factory->remove_rng(factory, rng_data[_i].data[i].create);
 +	}
 +	factory->destroy(factory);
 +}
 +END_TEST
 +
 +static diffie_hellman_t *dh_create(char *plugin)
 +{
 +	return (diffie_hellman_t*)plugin;
 +}
 +
 +static diffie_hellman_t *dh_create_modp1024(diffie_hellman_group_t group, ...)
 +{
 +	ck_assert(group == MODP_1024_BIT);
 +	return dh_create("plugin1");
 +}
 +
 +static diffie_hellman_t *dh_create_modp1024_second(diffie_hellman_group_t group,
 +												   ...)
 +{
 +	ck_assert(group == MODP_1024_BIT);
 +	return dh_create("plugin2");
 +}
 +
 +static diffie_hellman_t *dh_create_modp2048(diffie_hellman_group_t group, ...)
 +{
 +	ck_assert(group == MODP_2048_BIT);
 +	return dh_create("plugin1");
 +}
 +
 +static diffie_hellman_t *dh_create_modp2048_second(diffie_hellman_group_t group,
 +												   ...)
 +{
 +	ck_assert(group == MODP_2048_BIT);
 +	return dh_create("plugin2");
 +}
 +
 +static struct {
 +	char *exp1024;
 +	char *exp2048;
 +	struct {
 +		diffie_hellman_group_t g;
 +		dh_constructor_t create;
 +		char *plugin;
 +	} data[4];
 +} dh_data[] = {
 +	{ NULL, NULL, {
 +		{ MODP_NONE, NULL, NULL }
 +	}},
 +	{ "plugin1", NULL, {
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_NONE, NULL, NULL }
 +	}},
 +	{ "plugin1", NULL, {
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_1024_BIT, dh_create_modp1024_second, "plugin2" },
 +		{ MODP_NONE, NULL, NULL }
 +	}},
 +	{ "plugin2", NULL, {
 +		{ MODP_1024_BIT, dh_create_modp1024_second, "plugin2" },
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_NONE, NULL, NULL }
 +	}},
 +	{ "plugin1", "plugin1", {
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_2048_BIT, dh_create_modp2048, "plugin1" },
 +		{ MODP_NONE, NULL }
 +	}},
 +	{ "plugin1", "plugin1", {
 +		{ MODP_2048_BIT, dh_create_modp2048, "plugin1" },
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_NONE, NULL }
 +	}},
 +	{ "plugin1", "plugin1", {
 +		{ MODP_2048_BIT, dh_create_modp2048, "plugin1" },
 +		{ MODP_2048_BIT, dh_create_modp2048_second, "plugin2" },
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_NONE, NULL }
 +	}},
 +	{ "plugin1", "plugin2", {
 +		{ MODP_2048_BIT, dh_create_modp2048_second, "plugin2" },
 +		{ MODP_2048_BIT, dh_create_modp2048, "plugin1" },
 +		{ MODP_1024_BIT, dh_create_modp1024, "plugin1" },
 +		{ MODP_NONE, NULL }
 +	}},
 +};
 +
 +static void verify_dh(crypto_factory_t *factory, diffie_hellman_group_t request,
 +					  char *expected)
 +{
 +	char *plugin;
 +
 +	plugin = (char*)factory->create_dh(factory, request);
 +	if (!expected)
 +	{
 +		ck_assert(!plugin);
 +	}
 +	else
 +	{
 +		ck_assert(plugin);
 +		ck_assert_str_eq(expected, plugin);
 +	}
 +}
 +
 +START_TEST(test_create_dh)
 +{
 +	enumerator_t *enumerator;
 +	crypto_factory_t *factory;
 +	diffie_hellman_group_t group;
 +	char *plugin;
 +	int i, len = 0;
 +
 +
 +	factory = crypto_factory_create();
 +	for (i = 0; dh_data[_i].data[i].g != MODP_NONE; i++)
 +	{
 +		ck_assert(factory->add_dh(factory, dh_data[_i].data[i].g,
 +								  dh_data[_i].data[i].plugin,
 +								  dh_data[_i].data[i].create));
 +	}
 +	verify_dh(factory, MODP_1024_BIT, dh_data[_i].exp1024);
 +	verify_dh(factory, MODP_2048_BIT, dh_data[_i].exp2048);
 +
 +	len = countof(dh_data[_i].data);
 +	enumerator = factory->create_dh_enumerator(factory);
 +	for (i = 0; enumerator->enumerate(enumerator, &group, &plugin) && i < len;)
 +	{
 +		ck_assert_int_eq(dh_data[_i].data[i].g, group);
 +		while (dh_data[_i].data[i].g == group)
 +		{	/* skip other entries by the same group */
 +			i++;
 +		}
 +		switch (group)
 +		{
 +			case MODP_1024_BIT:
 +				ck_assert(dh_data[_i].exp1024);
 +				ck_assert_str_eq(dh_data[_i].exp1024, plugin);
 +				break;
 +			case MODP_2048_BIT:
 +				ck_assert(dh_data[_i].exp2048);
 +				ck_assert_str_eq(dh_data[_i].exp2048, plugin);
 +				break;
 +			default:
 +				fail("unexpected DH group");
 +				break;
 +		}
 +	}
 +	ck_assert(!enumerator->enumerate(enumerator));
 +	ck_assert_int_eq(dh_data[_i].data[i].g, MODP_NONE);
 +	enumerator->destroy(enumerator);
 +
 +	for (i = 0; dh_data[_i].data[i].g != MODP_NONE; i++)
 +	{
 +		factory->remove_dh(factory, dh_data[_i].data[i].create);
 +	}
 +	factory->destroy(factory);
 +}
 +END_TEST
 +
 +Suite *crypto_factory_suite_create()
 +{
 +	Suite *s;
 +	TCase *tc;
 +
 +	s = suite_create("crypto-factory");
 +
 +	tc = tcase_create("create_rng");
 +	tcase_add_loop_test(tc, test_create_rng, 0, countof(rng_data));
 +	suite_add_tcase(s, tc);
 +
 +	tc = tcase_create("create_dh");
 +	tcase_add_loop_test(tc, test_create_dh, 0, countof(dh_data));
 +	suite_add_tcase(s, tc);
 +
 +	return s;
 +}
 diff --git a/src/libstrongswan/tests/tests.h b/src/libstrongswan/tests/tests.h
 index 82a5137..ab0f642 100644
 --- a/src/libstrongswan/tests/tests.h
 +++ b/src/libstrongswan/tests/tests.h
@@ -35,6 +35,7 @@ TEST_SUITE(host_suite_create)
 TEST_SUITE(printf_suite_create)
 TEST_SUITE(hasher_suite_create)
 TEST_SUITE(crypter_suite_create)
 +TEST_SUITE(crypto_factory_suite_create)
 TEST_SUITE(pen_suite_create)
 TEST_SUITE(asn1_suite_create)
 TEST_SUITE(asn1_parser_suite_create)
 -- 
 2.1.2
--- a/README.SUSE
+++ b/README.SUSE
@ -15,16 +15,40 @@ This requires adoption of either the "conn %default" or all other IKEv1
 	keyexchange=ikev1
 The charon daemon in strongswan 5.x versions supports IKEv1 and IKEv2,
 thus a separate pluto IKEv1 daemon is not needed / not shipped any more.
 The strongswan package does no provide any files any more, but triggers
 the installation of both, IKEv1 (pluto) and IKEv2 (charon) daemons and the
 traditional starter scripts inclusive of the /etc/init.d/ipsec init script
 and /etc/ipsec.conf file.
-There is a new strongswan-nm package with a NetworkManager plugin to
+The strongswan package does not provide any files except of this README,
-control the charon IKEv2 daemon through D-Bus, designed to work using the
+but triggers the installation of the charon daemon and the "traditional"
-NetworkManager-strongswan graphical user interface.
+strongswan-ipsec package providing the "ipsec" script and service.
 The ipsec.service is an alias link to the "strongswan.service" systemd
 service unit and created by "systemctl enable strongswan.service".
 There is a new strongswan-nm package with a NetworkManager specific charon-nm
 binary controlling the charon daemon through D-Bus and designed to work using
 the NetworkManager-strongswan graphical user interface.
 It does not depend on the traditional starter scripts, but on the IKEv2
 charon daemon and plugins only. 
 The stongswan-hmac package provides the fips hmac hash files, a _fipscheck
 script and a /etc/strongswan.d/charon/zzz_fips-enforce.conf config file,
 which disables all non-openssl algorithm implementations.
 When fips operation mode is enabled in the kernel using the fips=1 boot
 parameter, the strongswan fips checks are executed in front of any start
 action of the "ipsec" script provided by the "strongswan-ipsec" package
 and a verification problem causes a failure as required by fips-140-2.
 Further, it is not required to enable the fips_mode in the openssl plugin
 (/etc/strongswan.d/charon/openssl.conf); the kernel entablement enables
 it automatically as needed.
 The "ipsec _fipscheck" command allows to execute the fips checks manually
 without a check if fips is enabled (/proc/sys/crypto/fips_enabled is 1),
 e.g. for testing purposes.
 Have a lot of fun...
--- a/fips-enforce.conf
+++ b/fips-enforce.conf
@ -0,0 +1,52 @@
 #
 # When fips is enabled (fips=1 kernel parameter), only certified openssl
 # and kernel crypto API (af-alg) algorithms are supported.
 #
 # The strongswan-hmac package is supposed to be used/installed when fips
 # is enabled and provides the hmac hashes, a "ipsec _fipscheck" script
 # verifying the components and this blacklist disabling other plugins
 # providing further and/or alternative algorithm implementations.
 #
 gcrypt {
    load = no
 }
 blowfish {
    load = no
 }
 random {
    load = no
 }
 des {
    load = no
 }
 aes {
    load = no
 }
 rc2 {
    load = no
 }
 ctr {
    load = no
 }
 cmac {
    load = no
 }
 xcbc {
    load = no
 }
 md4 {
    load = no
 }
 md5 {
    load = no
 }
 sha1 {
    load = no
 }
 sha2 {
    load = no
 }
 ccm {
    load = no
 }
--- a/fipscheck.sh.in
+++ b/fipscheck.sh.in
@ -0,0 +1,69 @@
 #! /bin/bash
 #
 # Copyright (C) 2014 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # This program is free software; you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation; either version 2 of the License, or
 # (at your option) any later version.
 #
 # This program is distributed in the hope that it will be useful,
 # but WITHOUT ANY WARRANTY; without even the implied warranty of
 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 # GNU General Public License for more details.
 #
 # You should have received a copy of the GNU General Public License along
 # with this program; if not, see <http://www.gnu.org/licenses/>.
 #
 # Author: Marius Tomaschewski <mt@suse.de>
 #
 IPSEC_DIR="@IPSEC_DIR@"
 IPSEC_LIBDIR="@IPSEC_LIBDIR@"
 IPSEC_BINDIR="@IPSEC_BINDIR@"
 IPSEC_SBINDIR="@IPSEC_SBINDIR@"
 fipscheck_bin="/usr/bin/fipscheck"
 # minimal usage hint
 if test $# -gt 0 ; then
 	echo "usage: ipsec _fipscheck" >&2
 	exit 2
 fi
 #
 # "ipsec xxx" starts this script only if crypto/fips_enabled=1,
 # except while a manually enforced check via "ipsec _fipscheck".
 #
 #read 2>/dev/null fips_enabled < /proc/sys/crypto/fips_enabled
 #test "X$fips_enabled" = "X1" || exit 0
 # verify that fipscheck is installed
 test -x "$fipscheck_bin" || {
 	test "X$FIPSCHECK_DEBUG" = "Xerror" && \
 	echo "${0##*/}: $fipscheck_bin utility missed" >&2
 	exit 4
 }
 shopt -s nullglob
 files=()
 for h in ${IPSEC_DIR}/.*.hmac \
 	 ${IPSEC_LIBDIR}/.*.hmac \
 	 ${IPSEC_LIBDIR}/imcvs/.*.hmac \
 	 ${IPSEC_LIBDIR}/plugins/.*.hmac \
 	 ${IPSEC_SBINDIR}/.ipsec.hmac \
 	;
 do
 	dir="${h%/*}"
 	name="${h##*/.}"
 	file="${dir}/${name%.hmac}"
 	# some part is not installed
 	test -f "${file}" && files+=("$file")
 done
 if test ${#files[@]} -gt 0 ; then
 	$fipscheck_bin ${files[@]} ; exit $?
 elif test "X$FIPSCHECK_DEBUG" = "Xerror" ; then
 	echo "${0##*/}: unable to find any checksum/hmac file" >&2
 fi
 exit 3
--- a/strongswan-fips-disablegcrypt.patch
+++ b/strongswan-fips-disablegcrypt.patch
@ -1,15 +0,0 @@
 References: fate#316931
 Index: strongswan-5.1.3/conf/plugins/gcrypt.conf
 ===================================================================
 --- strongswan-5.1.3.orig/conf/plugins/gcrypt.conf
 +++ strongswan-5.1.3/conf/plugins/gcrypt.conf
@@ -2,7 +2,7 @@ gcrypt {
     # Whether to load the plugin. Can also be an integer to increase the
     # priority of this plugin.
 -    load = yes
 +    load = no
     # Use faster random numbers in gcrypt; for testing only, produces weak keys!
     # quick_random = no
--- a/strongswan.changes
+++ b/strongswan.changes
@ -1,3 +1,47 @@
 -------------------------------------------------------------------
 Tue Nov 25 11:22:06 UTC 2014 - mt@suse.de
 - Updated strongswan-hmac package description (bsc#856322).
 -------------------------------------------------------------------
 Fri Nov 21 12:03:59 UTC 2014 - mt@suse.de
 - Disabled explicit gpg validation; osc source_validator does it.
 - Guarded fipscheck and hmac package in the spec file for >13.1.
 -------------------------------------------------------------------
 Thu Nov 20 07:43:43 UTC 2014 - mt@suse.de
 - Added generation of fips hmac hash files using fipshmac utility
  and a _fipscheck script to verify binaries/libraries/plugings
  shipped in the strongswan-hmac package.
  With enabled fips in the kernel, the ipsec script will call it
  before any action or in a enforced/manual "ipsec _fipscheck" call.
  Added config file to load openssl and kernel af-alg plugins, but
  not all the other modules which provide further/alternative algs.
  Applied a filter disallowing non-approved algorithms in fips mode.
  (fate#316931,bnc#856322).
  [+ strongswan_fipscheck.patch, strongswan_fipsfilter.patch]
 - Fixed file list in the optional (disabled) strongswan-test package.
 - Fixed build of the strongswan built-in integrity checksum library
  and enabled building it only on architectures tested to work.
 - Fix to use bug number 897048 instead 856322 in last changes entry.
 - Applied an upstream patch reverting to store algorithms in the
  registration order again as ordering them by identifier caused
  weaker algorithms to be proposed first by default (bsc#897512).
  [+0001-restore-registration-algorithm-order.bug897512.patch]
 -------------------------------------------------------------------
 Fri Sep 26 16:02:09 UTC 2014 - mt@suse.de
 - Re-enabled gcrypt plugin and reverted to not enforce fips again
  as this breaks gcrypt and openssl plugins when the fips pattern
  option is not installed (fate#316931,bnc#856322).
  [- strongswan-fips-disablegcrypt.patch]
 - Added empty strongswan-hmac package supposed to provide fips hmac
  files and enforce fips compliant operation later (bnc#856322).
 - Cleaned up conditional build flags in the rpm spec file.
 -------------------------------------------------------------------
 Thu Jul  3 13:39:45 UTC 2014 - meissner@suse.com
--- a/strongswan.spec
+++ b/strongswan.spec
@ -31,16 +31,27 @@ Release:        0
 %else
 %bcond_with     tests
 %endif
-%if 0%{suse_version} > 1110
+%if 0%{suse_version} > 1310
-%bcond_without  mysql
+%bcond_without  fipscheck
 %else
-%bcond_with     mysql
+%bcond_with     fipscheck
 %endif
 %ifarch %{ix86} ppc64le
 %bcond_without  integrity
 %else
 %bcond_with     integrity
 %endif
 %if 0%{suse_version} > 1110
 %bcond_without  farp
 %bcond_without  afalg
 %bcond_without  mysql
 %bcond_without  sqlite
 %bcond_without  gcrypt
 %bcond_without  nm
 %else
 %bcond_with     farp
 %bcond_with     afalg
 %bcond_with     mysql
 %bcond_with     sqlite
 %bcond_with     gcrypt
 %bcond_with     nm
@ -61,16 +72,23 @@ Source2:        %{name}.init.in
 Source3:        %{name}-%{version}-rpmlintrc
 Source4:        README.SUSE
 Source5:        %{name}.keyring
 %if %{with fipscheck}
 Source6:        fipscheck.sh.in
 Source7:        fips-enforce.conf
 %endif
 Patch1:         %{name}_modprobe_syslog.patch
 Patch2:         %{name}_ipsec_service.patch
-Patch3:         %{name}-fips-disablegcrypt.patch
+%if %{with fipscheck}
 Patch3:         %{name}_fipscheck.patch
 Patch4:         %{name}_fipsfilter.patch
 %endif
 Patch5:         0001-restore-registration-algorithm-order.bug897512.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  bison
 BuildRequires:  curl-devel
 BuildRequires:  flex
 BuildRequires:  gmp-devel
 BuildRequires:  gperf
 BuildRequires:  gpg-offline
 BuildRequires:  libcap-devel
 BuildRequires:  libopenssl-devel
 BuildRequires:  libsoup-devel
@ -91,11 +109,21 @@ BuildRequires:  libgcrypt-devel
 BuildRequires:  NetworkManager-devel
 %endif
 %if %{with systemd}
-BuildRequires:  pkgconfig(systemd)
+%{?systemd_requires}
 %endif
 BuildRequires:  iptables
 %if %{with systemd}
 %{!?_rundir: %global _rundir /run}
 %{!?_tmpfilesdir: %global _tmpfilesdir /usr/lib/tmpfiles.d}
 %else
 %{!?_rundir: %global _rundir /var/run}
 %endif
 BuildRequires:  autoconf
 BuildRequires:  automake
 %if %{with fipscheck}
 BuildRequires:  fipscheck
 %endif
 BuildRequires:  libtool
 %description
 StrongSwan is an OpenSource IPsec-based VPN Solution for Linux
@ -161,6 +189,24 @@ StrongSwan is an OpenSource IPsec-based VPN Solution for Linux
 This package provides the strongswan library and plugins.
 %if %{with fipscheck}
 %package hmac
 Summary:        HMAC files for FIPS-140-2 integrity
 Group:          Productivity/Networking/Security
 Requires:       fipscheck
 Requires:       strongswan-ipsec = %{version}
 Requires:       strongswan-libs0 = %{version}
 %description hmac
 The package provides HMAC hash files for FIPS-140-2 integrity checks,
 a config file disabling alternative algorithm implementations and a
 _fipscheck helper script preforming the integrity checks before e.g.
 "ipsec start" action is executed, when FIPS-140-2 compliant operation
 mode is enabled.
 %endif
 %package ipsec
 Summary:        OpenSource IPsec-based VPN Solution
 Group:          Productivity/Networking/Security
@ -240,39 +286,58 @@ and the load testing plugin for IKEv2 daemon.
 %endif
 %prep
 %gpg_verify %{S:1}
 %setup -q -n %{name}-%{upstream_version}
 %patch1 -p0
 %patch2 -p0
-%patch3 -p1
+%if %{with fipscheck}
 %patch3 -p0
 %patch4 -p1
 %endif
 %patch5 -p1
 sed -e 's|@libexecdir@|%_libexecdir|g'    \
     < $RPM_SOURCE_DIR/strongswan.init.in \
     > strongswan.init
 %if %{with fipscheck}
 sed -e 's|@IPSEC_DIR@|%{_libexecdir}/ipsec|g' \
    -e 's|@IPSEC_LIBDIR@|%{_libdir}/ipsec|g'  \
    -e 's|@IPSEC_SBINDIR@|%{_sbindir}|g'      \
    -e 's|@IPSEC_BINDIR@|%{_bindir}|g'        \
     < $RPM_SOURCE_DIR/fipscheck.sh.in        \
     > _fipscheck
 %endif
 %build
 CFLAGS="$RPM_OPT_FLAGS -W -Wall -Wno-pointer-sign -Wno-strict-aliasing -Wno-unused-parameter"
 export RPM_OPT_FLAGS CFLAGS
-#libtoolize --force
+autoreconf --force --install
 #autoreconf
 %configure \
-	--enable-conftest \
+%if %{with integrity}
 	--enable-integrity-test \
 %endif
 	--with-capabilities=libcap \
 	--with-plugindir=%{strongswan_plugins} \
 	--with-fips=2 \
 	--with-resolv-conf=%{_rundir}/%{name}/resolv.conf \
 	--with-piddir=%{_rundir}/%{name} \
 %if %{with systemd}
 	--with-systemdsystemunitdir=%{_unitdir} \
 %endif
 	--enable-pkcs11 \
 	--enable-openssl \
 	--enable-agent \
 %if %{with gcrypt}
 	--enable-gcrypt \
 %else
 	--disable-gcrypt \
 %endif
 	--enable-blowfish \
 	--enable-ctr \
 	--enable-ccm \
 	--enable-gcm \
 	--enable-unity \
 	--enable-md4 \
 %if %{with afalg}
 	--enable-af-alg \
 %endif
 	--enable-eap-sim \
 	--enable-eap-sim-file \
 	--enable-eap-sim-pcsc \
@ -305,7 +370,9 @@ export RPM_OPT_FLAGS CFLAGS
 	--enable-imv-scanner \
 	--enable-ha \
 	--enable-dhcp \
 %if %{with farp}
 	--enable-farp \
 %endif
 	--enable-smp \
 	--enable-sql \
 	--enable-attr-sql \
@ -322,15 +389,13 @@ export RPM_OPT_FLAGS CFLAGS
 %if %{with sqlite}
 	--enable-sqlite \
 %endif
 %if %{with gcrypt}
 	--enable-gcrypt \
 %endif
 %if %{with nm}
 	--enable-nm \
 %else
 	--disable-nm \
 %endif
 %if %{with tests}
 	--enable-conftest \
 	--enable-load-tester \
 	--enable-test-vectors \
 %endif
@ -344,14 +409,44 @@ make %{?_smp_mflags:%_smp_mflags}
 export RPM_BUILD_ROOT
 install -d -m755              ${RPM_BUILD_ROOT}%{_sbindir}/
 install -d -m755              ${RPM_BUILD_ROOT}%{_sysconfdir}/ipsec.d/
-%if ! %{with systemd}
+%if %{with systemd}
 ln -sf %_sbindir/service      ${RPM_BUILD_ROOT}%_sbindir/rcstrongswan
 %else
 install -d -m755              ${RPM_BUILD_ROOT}%{_sysconfdir}/init.d/
 install -m755 strongswan.init ${RPM_BUILD_ROOT}%{_sysconfdir}/init.d/ipsec
 ln -s %{_sysconfdir}/init.d/ipsec ${RPM_BUILD_ROOT}%{_sbindir}/rcipsec
 %endif
 #
 # Ensure, plugin -> library dependencies can be resolved
 # (e.g. libtls) to avoid plugin segment checksum errors.
 #
 LD_LIBRARY_PATH="$RPM_BUILD_ROOT-$$%{strongswan_libdir}" \
 make install DESTDIR="$RPM_BUILD_ROOT"
 #
 # checksums are calculated during make install using the
 # installed binaries/libraries... but find-debuginfo.sh
 # extracts debuginfo/debugsource breaking file checksums.
 # let find-debuginfo.sh run on a build root copy and then
 # calculate the checksums.
 #
 %if %{with integrity}
 %{?__debug_package:
 	if test -x %{_rpmconfigdir}/find-debuginfo.sh ; then
 		cp -a "${RPM_BUILD_ROOT}" "${RPM_BUILD_ROOT}-$$"
 		RPM_BUILD_ROOT="$RPM_BUILD_ROOT-$$" \
 		%{_rpmconfigdir}/find-debuginfo.sh  \
 			%{?_find_debuginfo_opts} "${RPM_BUILD_ROOT}-$$"
 		make -C src/checksum clean
 		rm -f   src/checksum/checksum_builder
 		LD_LIBRARY_PATH="$RPM_BUILD_ROOT-$$%{strongswan_libdir}" \
 		make -C src/checksum install DESTDIR="$RPM_BUILD_ROOT-$$"
 		mv "$RPM_BUILD_ROOT-$$%{strongswan_libdir}/libchecksum.so" \
 		   "$RPM_BUILD_ROOT%{strongswan_libdir}/libchecksum.so"
 		rm -rf "${RPM_BUILD_ROOT}-$$"
 	fi
 }
 %endif
 #
 rm -f ${RPM_BUILD_ROOT}%{_sysconfdir}/ipsec.secrets
 cat << EOT > ${RPM_BUILD_ROOT}%{_sysconfdir}/ipsec.secrets
 #
@ -362,6 +457,12 @@ cat << EOT > ${RPM_BUILD_ROOT}%{_sysconfdir}/ipsec.secrets
 #
 EOT
 #
 %if ! %{with mysql}
 rm -f $RPM_BUILD_ROOT%{strongswan_templates}/database/sql/mysql.sql
 %endif
 %if ! %{with sqlite}
 rm -f $RPM_BUILD_ROOT%{strongswan_templates}/database/sql/sqlite.sql
 %endif
 rm -f $RPM_BUILD_ROOT%{strongswan_libdir}/lib{charon,hydra,strongswan,pttls}.so
 rm -f $RPM_BUILD_ROOT%{strongswan_libdir}/lib{radius,simaka,tls,tnccs,imcv}.so
 find $RPM_BUILD_ROOT%{strongswan_libdir} -type f -name "*.la" -delete
@ -372,26 +473,62 @@ install -c -m644 TODO NEWS README COPYING LICENSE \
 		 ${RPM_BUILD_ROOT}%{strongswan_docdir}/
 install -c -m644 ${RPM_SOURCE_DIR}/README.SUSE \
 		 ${RPM_BUILD_ROOT}%{strongswan_docdir}/
-
+%if %{with systemd}
 %{__install} -d -m 0755 %{buildroot}%{_tmpfilesdir}
 echo 'd %{_rundir}/%{name} 0770 root root' > %{buildroot}%{_tmpfilesdir}/%{name}.conf
 %endif
 %if %{with fipscheck}
 #
 # note: keep the following, _fipscheck's and file lists in sync
 #
 install -c -m750 _fipscheck ${RPM_BUILD_ROOT}%{_libexecdir}/ipsec/
 install -c -m644 ${RPM_SOURCE_DIR}/fips-enforce.conf \
                 ${RPM_BUILD_ROOT}%{strongswan_configs}/charon/zzz_fips-enforce.conf
 # create fips hmac hashes _after_ install post run
 %{expand:%%global __os_install_post {%__os_install_post
 	for f in $RPM_BUILD_ROOT%{strongswan_libdir}/lib*.so.*.*.* \
 		 $RPM_BUILD_ROOT%{strongswan_libdir}/imcvs/*.so \
 		 $RPM_BUILD_ROOT%{strongswan_plugins}/*.so \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/charon \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/charon-nm \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/stroke \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/starter \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/pool \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/scepclient \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/pt-tls-client \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/imv_policy_manager \
 		 $RPM_BUILD_ROOT%{_libexecdir}/ipsec/_fipscheck \
 		 $RPM_BUILD_ROOT%{_sbindir}/ipsec \
 		;
 	do
 		/usr/bin/fipshmac "$f"
 	done
 }}
 %endif
-%post libs0 -p /sbin/ldconfig
+%post libs0
 /sbin/ldconfig
 %{?tmpfiles_create:%tmpfiles_create %{_tmpfilesdir}/%{name}.conf}
 %{!?tmpfiles_create:test -d %{_rundir}/%{name} || %{__mkdir_p} %{_rundir}/%{name}}
 %postun libs0 -p /sbin/ldconfig
 %pre ipsec
 %if %{with systemd}
 %service_add_pre %{name}.service
 %endif
 %post ipsec
-%if ! %{with systemd}
+%if %{with systemd}
 %service_add_post %{name}.service
 %else
 %{fillup_and_insserv ipsec}
 %endif
 %{?tmpfiles_create: %tmpfiles_create %{_tmpfilesdir}/%{name}.conf }
 %service_add_post %{name}.service
 %preun ipsec
-%if ! %{with systemd}
+%if %{with systemd}
 %service_del_preun %{name}.service
 %else
 %{stop_on_removal ipsec}
 %endif
 if test -s %{_sysconfdir}/ipsec.secrets.rpmsave ; then
@ -402,20 +539,38 @@ if test -s %{_sysconfdir}/ipsec.conf.rpmsave ; then
 	cp -p --backup=numbered %{_sysconfdir}/ipsec.conf.rpmsave \
 	                        %{_sysconfdir}/ipsec.conf.rpmsave.old
 fi
 %service_del_preun %{name}.service
 %postun ipsec
-%if ! %{with systemd}
+%if %{with systemd}
 %service_del_postun %{name}.service
 %else
 %{insserv_cleanup}
 %endif
 %service_del_postun %{name}.service
 %files
 %defattr(-,root,root)
 %dir %{strongswan_docdir}
 %{strongswan_docdir}/README.SUSE
 %if %{with fipscheck}
 %files hmac
 %defattr(-,root,root)
 %dir %{strongswan_configs}
 %dir %{strongswan_configs}/charon
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/zzz_fips-enforce.conf
 %dir %{strongswan_libdir}
 %{strongswan_libdir}/.*.hmac
 %{strongswan_libdir}/imcvs/.*.hmac
 %dir %{strongswan_plugins}
 %{strongswan_plugins}/.*.hmac
 %dir %{_libexecdir}/ipsec
 %{_libexecdir}/ipsec/_fipscheck
 %{_libexecdir}/ipsec/.*.hmac
 %{_sbindir}/.ipsec.hmac
 %endif
 %files ipsec
 %defattr(-,root,root)
 %config(noreplace) %attr(600,root,root) %{_sysconfdir}/ipsec.conf
@ -431,6 +586,7 @@ fi
 %dir %attr(700,root,root) %{_sysconfdir}/ipsec.d/private
 %if %{with systemd}
 %{_unitdir}/strongswan.service
 %{_sbindir}/rcstrongswan
 %else
 %config %{_sysconfdir}/init.d/ipsec
 %{_sbindir}/rcipsec
@ -446,7 +602,9 @@ fi
 %{_libexecdir}/ipsec/_copyright
 %{_libexecdir}/ipsec/_updown
 %{_libexecdir}/ipsec/_updown_espmark
 %if %{with test}
 %{_libexecdir}/ipsec/conftest
 %endif
 %{_libexecdir}/ipsec/duplicheck
 %{_libexecdir}/ipsec/pool
 %{_libexecdir}/ipsec/pt-tls-client
@ -459,7 +617,6 @@ fi
 %dir %{strongswan_plugins}
 %{strongswan_plugins}/libstrongswan-stroke.so
 %{strongswan_plugins}/libstrongswan-updown.so
 %{_tmpfilesdir}/%{name}.conf
 %files doc
 %defattr(-,root,root)
@ -477,6 +634,9 @@ fi
 %files libs0
 %defattr(-,root,root)
 %if %{with systemd}
 %{_tmpfilesdir}/%{name}.conf
 %endif
 %config(noreplace) %attr(600,root,root) %{_sysconfdir}/strongswan.conf
 %dir %{strongswan_configs}
 %dir %{strongswan_configs}/charon
@ -489,7 +649,9 @@ fi
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/tools.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/addrblock.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/aes.conf
 %if %{with afalg}
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/af-alg.conf
 %endif
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/agent.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/attr.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/attr-sql.conf
@ -523,10 +685,14 @@ fi
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/eap-tls.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/eap-tnc.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/eap-ttls.conf
 %if %{with farp}
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/farp.conf
 %endif
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/fips-prf.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/gcm.conf
 %if %{with gcrypt}
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/gcrypt.conf
 %endif
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/gmp.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/ha.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/hmac.conf
@ -573,7 +739,9 @@ fi
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/xauth-pam.conf
 %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/xcbc.conf
 %dir %{strongswan_libdir}
 %if %{with integrity}
 %{strongswan_libdir}/libchecksum.so
 %endif
 %{strongswan_libdir}/libcharon.so.*
 %{strongswan_libdir}/libhydra.so.*
 %{strongswan_libdir}/libpttls.so.*
@ -591,7 +759,9 @@ fi
 %dir %{strongswan_plugins}
 %{strongswan_plugins}/libstrongswan-addrblock.so
 %{strongswan_plugins}/libstrongswan-aes.so
 %if %{with afalg}
 %{strongswan_plugins}/libstrongswan-af-alg.so
 %endif
 %{strongswan_plugins}/libstrongswan-agent.so
 %{strongswan_plugins}/libstrongswan-attr.so
 %{strongswan_plugins}/libstrongswan-attr-sql.so
@ -625,7 +795,9 @@ fi
 %{strongswan_plugins}/libstrongswan-eap-tls.so
 %{strongswan_plugins}/libstrongswan-eap-tnc.so
 %{strongswan_plugins}/libstrongswan-eap-ttls.so
 %if %{with farp}
 %{strongswan_plugins}/libstrongswan-farp.so
 %endif
 %{strongswan_plugins}/libstrongswan-fips-prf.so
 %{strongswan_plugins}/libstrongswan-gcm.so
 %if %{with gcrypt}
@ -685,7 +857,9 @@ fi
 %{strongswan_templates}/config/strongswan.conf
 %{strongswan_templates}/config/plugins/addrblock.conf
 %{strongswan_templates}/config/plugins/aes.conf
 %if %{with afalg}
 %{strongswan_templates}/config/plugins/af-alg.conf
 %endif
 %{strongswan_templates}/config/plugins/agent.conf
 %{strongswan_templates}/config/plugins/attr-sql.conf
 %{strongswan_templates}/config/plugins/attr.conf
@ -719,10 +893,14 @@ fi
 %{strongswan_templates}/config/plugins/eap-tls.conf
 %{strongswan_templates}/config/plugins/eap-tnc.conf
 %{strongswan_templates}/config/plugins/eap-ttls.conf
 %if %{with farp}
 %{strongswan_templates}/config/plugins/farp.conf
 %endif
 %{strongswan_templates}/config/plugins/fips-prf.conf
 %{strongswan_templates}/config/plugins/gcm.conf
 %if %{with gcrypt}
 %{strongswan_templates}/config/plugins/gcrypt.conf
 %endif
 %{strongswan_templates}/config/plugins/gmp.conf
 %{strongswan_templates}/config/plugins/ha.conf
 %{strongswan_templates}/config/plugins/hmac.conf
@ -831,6 +1009,18 @@ fi
 %files tests
 %defattr(-,root,root)
 %dir %{strongswan_configs}
 %dir %{strongswan_configs}/charon
 %{strongswan_configs}/charon/load-tester.conf
 %{strongswan_configs}/charon/test-vectors.conf
 %dir %{strongswan_templates}
 %dir %{strongswan_templates}/config
 %dir %{strongswan_templates}/config/plugins
 %{strongswan_templates}/config/plugins/load-tester.conf
 %{strongswan_templates}/config/plugins/test-vectors.conf
 %dir %{_libexecdir}/ipsec
 %{_libexecdir}/ipsec/conftest
 %{_libexecdir}/ipsec/load-tester
 %dir %{strongswan_libdir}
 %dir %{strongswan_plugins}
 %{strongswan_plugins}/libstrongswan-load-tester.so
--- a/strongswan_fipscheck.patch
+++ b/strongswan_fipscheck.patch
@ -0,0 +1,89 @@
 --- src/ipsec/_ipsec.in
 +++ src/ipsec/_ipsec.in	2014/11/07 11:28:25
@@ -44,6 +44,26 @@ export IPSEC_DIR IPSEC_BINDIR IPSEC_SBIN
 IPSEC_DISTRO="Institute for Internet Technologies and Applications\nUniversity of Applied Sciences Rapperswil, Switzerland"
 +fipscheck()
 +{
 +	# when fips operation mode is not enabled, just report OK
 +	read 2>/dev/null fips_enabled < /proc/sys/crypto/fips_enabled
 +	test "X$fips_enabled" = "X1"    || return 0
 +
 +	# complain when _fipscheck is missed
 +	test -x "$IPSEC_DIR/_fipscheck" || {
 +		echo "ipsec: please install strongswan-hmac package required in fips mode" >&2
 +		return 4
 +	}
 +
 +	# now execute it
 +	$IPSEC_DIR/_fipscheck || {
 +		rc=$?
 +		echo "ipsec: strongSwan fips file integrity check failed" >&2
 +		return $rc
 +	}
 +}
 +
 case "$1" in
 '')
 	echo "Usage: $IPSEC_SCRIPT command argument ..."
@@ -166,6 +186,7 @@ rereadall|purgeocsp|listcounters|resetco
 	shift
 	if [ -e $IPSEC_CHARON_PID ]
 	then
 +		fipscheck || exit $?
 		$IPSEC_STROKE "$op" "$@"
 		rc="$?"
 	fi
@@ -175,6 +196,7 @@ purgeike|purgecrls|purgecerts)
 	rc=7
 	if [ -e $IPSEC_CHARON_PID ]
 	then
 +		fipscheck || exit $?
 		$IPSEC_STROKE "$1"
 		rc="$?"
 	fi
@@ -208,6 +230,7 @@ route|unroute)
 	fi
 	if [ -e $IPSEC_CHARON_PID ]
 	then
 +		fipscheck || exit $?
 		$IPSEC_STROKE "$op" "$1"
 		rc="$?"
 	fi
@@ -217,6 +240,7 @@ secrets)
 	rc=7
 	if [ -e $IPSEC_CHARON_PID ]
 	then
 +		fipscheck || exit $?
 		$IPSEC_STROKE rereadsecrets
 		rc="$?"
 	fi
@@ -224,6 +248,7 @@ secrets)
 	;;
 start)
 	shift
 +	fipscheck || exit $?
 	if [ -d /var/lock/subsys ]; then
 		touch /var/lock/subsys/ipsec
 	fi
@@ -297,6 +322,7 @@ up)
 	rc=7
 	if [ -e $IPSEC_CHARON_PID ]
 	then
 +		fipscheck || exit $?
 		$IPSEC_STROKE up "$1"
 		rc="$?"
 	fi
@@ -332,6 +358,11 @@ esac
 cmd="$1"
 shift
 +case $cmd in
 +_fipscheck|_copyright|pki) ;;
 +*) fipscheck || exit $?	;;
 +esac
 +
 path="$IPSEC_DIR/$cmd"
 if [ ! -x "$path" ]
--- a/strongswan_fipsfilter.patch
+++ b/strongswan_fipsfilter.patch
@ -0,0 +1,254 @@
 diff --git a/src/libcharon/config/proposal.c b/src/libcharon/config/proposal.c
 index 2ecdb4f..85767ab 100644
 --- a/src/libcharon/config/proposal.c
 +++ b/src/libcharon/config/proposal.c
@@ -26,6 +26,11 @@
 #include <crypto/prfs/prf.h>
 #include <crypto/crypters/crypter.h>
 #include <crypto/signers/signer.h>
 +#include <sys/types.h>
 +#include <sys/stat.h>
 +#include <fcntl.h>
 +#include <unistd.h>
 +#include <errno.h>
 ENUM(protocol_id_names, PROTO_NONE, PROTO_IPCOMP,
 	"PROTO_NONE",
@@ -185,6 +190,130 @@ METHOD(proposal_t, strip_dh, void,
 	enumerator->destroy(enumerator);
 }
 +static bool kernel_fips_enabled(void)
 +{
 +	char buf[1] = { '\0' };
 +	int fd;
 +
 +	fd = open("/proc/sys/crypto/fips_enabled", O_RDONLY);
 +	if (fd >= 0) {
 +		while (read(fd, buf, sizeof(buf)) < 0 && errno == EINTR);
 +		close(fd);
 +	}
 +	return buf[0] == '1';
 +}
 +
 +static bool fips_enabled(void)
 +{
 +	static int enabled = -1;
 +	if (enabled == -1)
 +		enabled = kernel_fips_enabled();
 +	return enabled;
 +}
 +
 +static bool fips_filter(protocol_id_t protocol, transform_type_t type, u_int16_t alg)
 +{
 +	switch (protocol)
 +	{
 +		case PROTO_IKE:
 +		case PROTO_ESP:
 +		case PROTO_AH:
 +			break;
 +		default:
 +			/* not applicable protocol */
 +			return TRUE;
 +	}
 +
 +	switch (type)
 +	{
 +		case ENCRYPTION_ALGORITHM:
 +			switch (alg)
 +			{
 +				/* crypter */
 +				case ENCR_3DES:
 +				case ENCR_AES_CBC:
 +				case ENCR_AES_CTR:
 +				/* aead */
 +				case ENCR_AES_GCM_ICV8:
 +				case ENCR_AES_GCM_ICV12:
 +				case ENCR_AES_GCM_ICV16:
 +				case ENCR_AES_CCM_ICV8:
 +				case ENCR_AES_CCM_ICV12:
 +				case ENCR_AES_CCM_ICV16:
 +					return TRUE;
 +				default:
 +					break;
 +			}
 +			break;
 +		case INTEGRITY_ALGORITHM:
 +			switch (alg)
 +			{
 +				case AUTH_HMAC_SHA1_96:
 +				case AUTH_HMAC_SHA1_160:
 +				case AUTH_HMAC_SHA2_256_96:
 +				case AUTH_HMAC_SHA2_256_128:
 +				case AUTH_HMAC_SHA2_384_192:
 +				case AUTH_HMAC_SHA2_512_256:
 +				case AUTH_AES_CMAC_96:
 +					return TRUE;
 +				default:
 +					break;
 +			}
 +			break;
 +		case PSEUDO_RANDOM_FUNCTION:
 +			switch (alg)
 +			{
 +				case PRF_HMAC_SHA1:
 +				case PRF_HMAC_SHA2_256:
 +				case PRF_HMAC_SHA2_384:
 +				case PRF_HMAC_SHA2_512:
 +				case PRF_AES128_CMAC:
 +					return TRUE;
 +				default:
 +					break;
 +			}
 +			break;
 +		case DIFFIE_HELLMAN_GROUP:
 +			switch (alg)
 +			{
 +				case MODP_1024_BIT:
 +				case MODP_1536_BIT:
 +				case MODP_2048_BIT:
 +				case MODP_3072_BIT:
 +				case MODP_4096_BIT:
 +				case MODP_8192_BIT:
 +				case MODP_1024_160:
 +				case MODP_2048_224:
 +				case MODP_2048_256:
 +				case ECP_192_BIT:
 +				case ECP_224_BIT:
 +				case ECP_256_BIT:
 +				case ECP_384_BIT:
 +				case ECP_521_BIT:
 +				case ECP_224_BP:
 +				case ECP_256_BP:
 +				case ECP_384_BP:
 +				case ECP_512_BP:
 +					return TRUE;
 +				default:
 +					break;
 +			}
 +			break;
 +		case EXTENDED_SEQUENCE_NUMBERS:
 +			switch (alg)
 +			{
 +				case EXT_SEQ_NUMBERS:
 +				case NO_EXT_SEQ_NUMBERS:
 +					return TRUE;
 +				default:
 +					break;
 +			}
 +		default:
 +			break;
 +	}
 +	return !fips_enabled();
 +}
 +
 /**
  * Select a matching proposal from this and other, insert into selected.
  */
@@ -500,6 +629,11 @@ static bool add_string_algo(private_proposal_t *this, const char *alg)
 		return FALSE;
 	}
 +	if (!fips_filter(this->protocol, token->type, token->algorithm))
 +	{
 +		DBG1(DBG_CFG, "algorithm '%s' not permitted in fips mode", alg);
 +		return FALSE;
 +	}
 	add_algorithm(this, token->type, token->algorithm, token->keysize);
 	return TRUE;
@@ -639,6 +773,8 @@ static void proposal_add_supported_ike(private_proposal_t *this)
 	enumerator = lib->crypto->create_crypter_enumerator(lib->crypto);
 	while (enumerator->enumerate(enumerator, &encryption, &plugin_name))
 	{
 +		if (!fips_filter(PROTO_IKE, ENCRYPTION_ALGORITHM, encryption))
 +			continue;
 		switch (encryption)
 		{
 			case ENCR_AES_CBC:
@@ -665,6 +801,9 @@ static void proposal_add_supported_ike(private_proposal_t *this)
 	enumerator = lib->crypto->create_aead_enumerator(lib->crypto);
 	while (enumerator->enumerate(enumerator, &encryption, &plugin_name))
 	{
 +		if (!fips_filter(PROTO_IKE, ENCRYPTION_ALGORITHM, encryption))
 +			continue;
 +
 		switch (encryption)
 		{
 			case ENCR_AES_CCM_ICV8:
@@ -690,6 +829,8 @@ static void proposal_add_supported_ike(private_proposal_t *this)
 	enumerator = lib->crypto->create_signer_enumerator(lib->crypto);
 	while (enumerator->enumerate(enumerator, &integrity, &plugin_name))
 	{
 +		if (!fips_filter(PROTO_IKE, INTEGRITY_ALGORITHM, integrity))
 +			continue;
 		switch (integrity)
 		{
 			case AUTH_HMAC_SHA1_96:
@@ -710,6 +851,8 @@ static void proposal_add_supported_ike(private_proposal_t *this)
 	enumerator = lib->crypto->create_prf_enumerator(lib->crypto);
 	while (enumerator->enumerate(enumerator, &prf, &plugin_name))
 	{
 +		if (!fips_filter(PROTO_IKE, PSEUDO_RANDOM_FUNCTION, prf))
 +			continue;
 		switch (prf)
 		{
 			case PRF_HMAC_SHA1:
@@ -730,6 +873,8 @@ static void proposal_add_supported_ike(private_proposal_t *this)
 	enumerator = lib->crypto->create_dh_enumerator(lib->crypto);
 	while (enumerator->enumerate(enumerator, &group, &plugin_name))
 	{
 +		if (!fips_filter(PROTO_IKE, DIFFIE_HELLMAN_GROUP, group))
 +			continue;
 		switch (group)
 		{
 			case MODP_NULL:
@@ -776,31 +921,35 @@ proposal_t *proposal_create_default(protocol_id_t protocol)
 {
 	private_proposal_t *this = (private_proposal_t*)proposal_create(protocol, 0);
 +#define fips_add_algorithm(this, type, alg, len)	\
 +	if (fips_filter(this->protocol, type, alg))	\
 +		add_algorithm(this, type, alg, len);
 	switch (protocol)
 	{
 		case PROTO_IKE:
 			proposal_add_supported_ike(this);
 			break;
 		case PROTO_ESP:
 -			add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_AES_CBC,         128);
 -			add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_AES_CBC,         192);
 -			add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_AES_CBC,         256);
 -			add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_3DES,              0);
 -			add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_BLOWFISH,        256);
 -			add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_SHA1_96,      0);
 -			add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_AES_XCBC_96,       0);
 -			add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_MD5_96,       0);
 -			add_algorithm(this, EXTENDED_SEQUENCE_NUMBERS, NO_EXT_SEQ_NUMBERS,  0);
 +			fips_add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_AES_CBC,         128);
 +			fips_add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_AES_CBC,         192);
 +			fips_add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_AES_CBC,         256);
 +			fips_add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_3DES,              0);
 +			fips_add_algorithm(this, ENCRYPTION_ALGORITHM,   ENCR_BLOWFISH,        256);
 +			fips_add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_SHA1_96,      0);
 +			fips_add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_AES_XCBC_96,       0);
 +			fips_add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_MD5_96,       0);
 +			fips_add_algorithm(this, EXTENDED_SEQUENCE_NUMBERS, NO_EXT_SEQ_NUMBERS,  0);
 			break;
 		case PROTO_AH:
 -			add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_SHA1_96,      0);
 -			add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_AES_XCBC_96,       0);
 -			add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_MD5_96,       0);
 -			add_algorithm(this, EXTENDED_SEQUENCE_NUMBERS, NO_EXT_SEQ_NUMBERS,  0);
 +			fips_add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_SHA1_96,      0);
 +			fips_add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_AES_XCBC_96,       0);
 +			fips_add_algorithm(this, INTEGRITY_ALGORITHM,    AUTH_HMAC_MD5_96,       0);
 +			fips_add_algorithm(this, EXTENDED_SEQUENCE_NUMBERS, NO_EXT_SEQ_NUMBERS,  0);
 			break;
 		default:
 			break;
 	}
 +#undef fips_add_algorithm
 	return &this->public;
 }