main/ipsec-tools: apply a security fix from upstream commit

author: Timo Teräs <timo.teras@iki.fi> 2013-01-24 08:51:04 +0200
committer: Timo Teräs <timo.teras@iki.fi> 2013-01-24 08:51:54 +0200
commit: e90e26659383d1702bdeb9be143f3a11f3783488 (patch)
tree: d94ec3a50c8a4e2e206c1eb44dd8a56ad8bd3a6d /main/ipsec-tools/01-fix-deletion-notification.patch
parent: e0e1761e6c8e8027419c3129b45fc33f73f3f98a (diff)
download: aports-e90e26659383d1702bdeb9be143f3a11f3783488.tar.bz2
aports-e90e26659383d1702bdeb9be143f3a11f3783488.tar.xz
1 files changed, 12 insertions, 0 deletions
diff --git a/main/ipsec-tools/01-fix-deletion-notification.patch b/main/ipsec-tools/01-fix-deletion-notification.patch
new file mode 100644
index 0000000000..c81846289d
--- /dev/null
+++ b/main/ipsec-tools/01-fix-deletion-notification.patch
@@ -0,0 +1,12 @@
+diff -u -r1.48 isakmp_inf.c
+--- a/src/racoon/isakmp_inf.c	29 Aug 2012 12:01:30 -0000	1.48
++++ b/src/racoon/isakmp_inf.c	24 Jan 2013 06:46:45 -0000
+@@ -492,7 +492,7 @@
+ 		"delete payload for protocol %s\n",
+ 		s_ipsecdoi_proto(delete->proto_id));
+ 
+-	if(!iph1->rmconf->weak_phase1_check && !encrypted) {
++	if((iph1 == NULL || !iph1->rmconf->weak_phase1_check) && !encrypted) {
+ 		plog(LLV_WARNING, LOCATION, iph1->remote,
+ 			"Ignoring unencrypted delete payload "
+ 			"(check the weak_phase1_check option)\n");
author	Timo Teräs <timo.teras@iki.fi>	2013-01-24 08:51:04 +0200
committer	Timo Teräs <timo.teras@iki.fi>	2013-01-24 08:51:54 +0200
commit	e90e26659383d1702bdeb9be143f3a11f3783488 (patch)
tree	d94ec3a50c8a4e2e206c1eb44dd8a56ad8bd3a6d /main/ipsec-tools/01-fix-deletion-notification.patch
parent	e0e1761e6c8e8027419c3129b45fc33f73f3f98a (diff)
download	aports-e90e26659383d1702bdeb9be143f3a11f3783488.tar.bz2 aports-e90e26659383d1702bdeb9be143f3a11f3783488.tar.xz