Hi, the attached patch is a slightly revised version of my original patch from August 2010.
It has been modified to detect if the development version of the OpenSSL library supports SHA256 via autoconf or configure (OpenSSL versions prior to 0.9.8 do not). SHA256 support can also be disabled in config.h by undef'ing HAVE_CRYPTO_SHA256. It also contains a fix in ipmi_intf.h which was not detected during the initial development under Cygwin last year. This was detected when Andy Cress ported/integrated the SHA256 support to ipmiutil and I switched to a real Linux development machine. Sorry for not distributing the updated patch earlier. Comments or feedback is more than welcome, especially if it works with other vendor implementations. Best regards, Holger Liebig > -----Original Message----- > From: Liebig, Holger [mailto:holger.lie...@ts.fujitsu.com] > Sent: Monday, August 02, 2010 3:58 PM > To: ipmitool-devel@lists.sourceforge.net > Subject: [Ipmitool-devel] Patch for HMAC_MD5 and HMAC_SHA256 support > > Hi, > Please find attached patches for adding HMAC_MD5 (Cipher Suite 6/7/8) and > HMAC_SHA256 (currently only Cipher Suite 17) support to ipmitool. The > upcoming DCMI Spec. 1.1 lists Cipher Suite Id 17 as RAKP-HMAC-SHA256 / > HMAC-SHA-256-128 / AES_CBC-128 combination. > > Please note, that while SHA256 is listed as RAKP Authentication Algorithm > in Section 13.28.1b in the IPMI 2.0 Spec. Errata 4, unfortunately the > HMAC_SHA256 related Cipher Suite ID's are not listed in the same document > (Errata 4). Therefore this patch is considered preliminary until the > Cipher Suite ID has been officially confirmed. > > Maybe someone from Intel on this list can officially confirm the ID's or > forward this to the IPMI consortium. > > Comments or feedback is more than welcome, especially if it works with > other vendor implementations. > > Thanks, > Holger
SHA256.patch
Description: SHA256.patch
------------------------------------------------------------------------------ WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd
_______________________________________________ Ipmitool-devel mailing list Ipmitool-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/ipmitool-devel
