encoding: Don't verify length of IKEv1 KE payloads
The verification introduced with 84738b1aed
("encoding: Verify the length
of KE payload data for known groups") can't be done for IKEv1 as the KE
payload does not contain the DH group.
This commit is contained in:
parent
d2f4345b03
commit
2ed5f5693d
|
@ -146,6 +146,12 @@ METHOD(payload_t, verify, status_t,
|
||||||
diffie_hellman_group_t g = this->dh_group_number;
|
diffie_hellman_group_t g = this->dh_group_number;
|
||||||
bool valid = TRUE;
|
bool valid = TRUE;
|
||||||
|
|
||||||
|
if (this->type == PLV1_KEY_EXCHANGE)
|
||||||
|
{
|
||||||
|
/* IKEv1 does not transmit the group */
|
||||||
|
return SUCCESS;
|
||||||
|
}
|
||||||
|
|
||||||
switch (g)
|
switch (g)
|
||||||
{
|
{
|
||||||
case MODP_NONE:
|
case MODP_NONE:
|
||||||
|
|
Loading…
Reference in New Issue