mirror of
https://abf.rosa.ru/djam/strongswan.git
synced 2025-02-23 14:02:51 +00:00
20 lines
841 B
Diff
20 lines
841 B
Diff
diff -urNp strongswan-5.1.0-patched/src/libpts/pts/pts_dh_group.c strongswan-5.1.0-current/src/libpts/pts/pts_dh_group.c
|
|
--- strongswan-5.1.0-patched/src/libpts/pts/pts_dh_group.c 2013-08-06 17:16:36.238031476 -0400
|
|
+++ strongswan-5.1.0-current/src/libpts/pts/pts_dh_group.c 2013-08-06 17:44:48.005036651 -0400
|
|
@@ -74,6 +74,16 @@ bool pts_dh_group_probe(pts_dh_group_t *
|
|
{
|
|
DBG1(DBG_PTS, format2, "mandatory", diffie_hellman_group_names,
|
|
ECP_256_BIT);
|
|
+ /* Openssl in Fedora does not allow ECP_256 and ECP_384, so lets not die
|
|
+ * here. As far as, there is one dh group available, lets continue. It makes
|
|
+ * it non-compliant to TCG's PTS standard, but there is no choice right now.
|
|
+ * see redhat bz # 319901.
|
|
+ */
|
|
+ if(*dh_groups != PTS_DH_GROUP_NONE)
|
|
+ {
|
|
+ return TRUE;
|
|
+ }
|
|
+
|
|
}
|
|
return FALSE;
|
|
}
|