encoding: Don't verify length of IKEv1 KE payloads
The verification introduced with 84738b1aed
("encoding: Verify the length
of KE payload data for known groups") can't be done for IKEv1 as the KE
payload does not contain the DH group.
This commit is contained in:
parent
d2f4345b03
commit
2ed5f5693d
|
@ -146,6 +146,12 @@ METHOD(payload_t, verify, status_t,
|
|||
diffie_hellman_group_t g = this->dh_group_number;
|
||||
bool valid = TRUE;
|
||||
|
||||
if (this->type == PLV1_KEY_EXCHANGE)
|
||||
{
|
||||
/* IKEv1 does not transmit the group */
|
||||
return SUCCESS;
|
||||
}
|
||||
|
||||
switch (g)
|
||||
{
|
||||
case MODP_NONE:
|
||||
|
|
Loading…
Reference in New Issue