aboutsummaryrefslogtreecommitdiffstats
path: root/src/libhydra/plugins/kernel_pfkey/kernel_pfkey_ipsec.c
diff options
context:
space:
mode:
authorTobias Brunner <tobias@strongswan.org>2015-02-25 08:30:33 +0100
committerTobias Brunner <tobias@strongswan.org>2015-03-04 13:47:53 +0100
commitdd0ebb54837298c869389d36a0b42eefdb893dd6 (patch)
treeb5974c5e956d8aab746ea1edd7b694127479c608 /src/libhydra/plugins/kernel_pfkey/kernel_pfkey_ipsec.c
parent650a3ad5151958b99a95836fb8b84b8aa18da1be (diff)
downloadstrongswan-dd0ebb54837298c869389d36a0b42eefdb893dd6.tar.bz2
strongswan-dd0ebb54837298c869389d36a0b42eefdb893dd6.tar.xz
ikev2: Only accept initial messages in specific states
The previous code allowed an attacker to slip in an IKE_SA_INIT with both SPIs and MID 1 set when an IKE_AUTH would be expected instead. References #816.
Diffstat (limited to 'src/libhydra/plugins/kernel_pfkey/kernel_pfkey_ipsec.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-20 23:22:25 +0000