[Swan-commit] Changes to ref refs/heads/master
Andrew Cagney
cagney at vault.libreswan.fi
Tue Jun 11 13:29:49 UTC 2019
New commits:
commit 6f727fe8192cf6a19f9564db6070534a7493ea21
Merge: addf8ce 5f42782
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Jun 11 09:25:31 2019 -0400
ikev1: CVE-2019-10155 - check integrity of informational payloads
As part of the event loop, check the integrity of decrypted
payloads.
The exceptions are:
- first encrypted payload where, instead, things are authenticated
- unexpected payloads which get dropped
commit 5f4278268d04579c872adf211032047859aefc0e
Author: Andrew Cagney <cagney at gnu.org>
Date: Sat Mar 2 14:12:06 2019 -0500
testing: WIP: play with IKEv1's HASH playload
commit 646368512ceb4f6aa8858486d3422ba428f100d7
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 1 21:49:14 2019 -0500
ikev1: delete old redundant CHECK_HASH macros
already performed by the event processor
commit 341684549bbb7b08a20c09375a6a942bae6eda8c
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Mar 1 21:46:27 2019 -0500
ikev1: add check_v1_HASH(), call after decrypting a message
So that a transition can directly specify that its hash should
be checked and how.
commit 62c65d6bb4e3d1fdab3684cfb4ea36d9da4645ce
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Mar 5 17:55:52 2019 -0500
ikev1: always (debug)log something when checking a hash
More information about the Swan-commit
mailing list