New commits:
commit 032cd1325bbfa4900ffa407568b97658427fe83b
Author: Andrew Cagney <cag...@gnu.org>
Date: Wed Dec 13 10:00:48 2017 -0500
crypto: merge IKEv1 struct pcr_skeyid_r and pcr_skeyid_q into struct
pcr_dh_v1
So that any pointers passed into the crypto helper (namely the
secret) are still available when the helper finishes (or the
task is aborted).
The old code would overwrite the pointers, possibly leaking them.
Arguably, there should be two structures: one for simple IKEv1 DH
(phase 2, what ever that is); and one for IKEv1 DH+IV (phase 1,
again what ever that is). Unfortunately, the above are passed
everywhere making that change very messy.
_______________________________________________
Swan-commit mailing list
Swan-commit@lists.libreswan.org
https://lists.libreswan.org/mailman/listinfo/swan-commit
