Input ik,ck keys for add_sa() function are not zero terminated that cause
- des3_ede encryption key expansion possible buffer overflow.
Also:
- sha1 authentication key expansion has been corrected.
<!-- Kamailio Pull Request Template -->
<!--
IMPORTANT:
- for detailed contributing guidelines, read:
https://github.com/kamailio/kamailio/blob/master/.github/CONTRIBUTING.md
- pull requests must be done to master branch, unless they are backports
of fixes from master branch to a stable branch
- backports to stable branches must be done with 'git cherry-pick -x ...'
- code is contributed under BSD for core and main components (tm, sl, auth, tls)
- code is contributed GPLv2 or a compatible license for the other components
- GPL code is contributed with OpenSSL licensing exception
-->
#### Pre-Submission Checklist
<!-- Go over all points below, and after creating the PR, tick all the checkboxes that apply -->
<!-- All points should be verified, otherwise, read the CONTRIBUTING guidelines from above-->
<!-- If you're unsure about any of these, don't hesitate to ask on sr-dev mailing list -->
- [X] Commit message has the format required by CONTRIBUTING guide
- [ X] Commits are split per component (core, individual modules, libs, utils, ...)
- [X] Each component has a single commit (if not, squash them into one commit)
- [X] No commits to README files for modules (changes must be done to docbook files
in `doc/` subfolder, the README file is autogenerated)
#### Type Of Change
- [X] Small bug fix (non-breaking change which fixes an issue)
- [ ] New feature (non-breaking change which adds new functionality)
- [ ] Breaking change (fix or feature that would change existing functionality)
#### Checklist:
<!-- Go over all points below, and after creating the PR, tick the checkboxes that apply -->
- [X] PR should be backported to stable branches
- [X] Tested changes locally
- [ ] Related to issue #XXXX (replace XXXX with an open issue number)
#### Description
<!-- Describe your changes in detail -->
You can view, comment on, or merge this pull request online at:
https://github.com/kamailio/kamailio/pull/3121
-- Commit Summary --
* ims_ipsec_pcscf: ik and ck keys expansion fixes
-- File Changes --
M src/modules/ims_ipsec_pcscf/ipsec.c (50)
-- Patch Links --
https://github.com/kamailio/kamailio/pull/3121.patchhttps://github.com/kamailio/kamailio/pull/3121.diff
--
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/pull/3121
You are receiving this because you are subscribed to this thread.
Message ID: <kamailio/kamailio/pull/3121(a)github.com>
Module: kamailio
Branch: master
Commit: 6e7b6cfabba6774627f942d7f02e1adf62bf7797
URL: https://github.com/kamailio/kamailio/commit/6e7b6cfabba6774627f942d7f02e1ad…
Author: Daniel-Constantin Mierla <miconda(a)gmail.com>
Committer: Daniel-Constantin Mierla <miconda(a)gmail.com>
Date: 2022-05-24T12:21:53+02:00
auth_identity: docs - type for accept_pem_certs param
---
Modified: src/modules/auth_identity/doc/auth_identity_params.xml
---
Diff: https://github.com/kamailio/kamailio/commit/6e7b6cfabba6774627f942d7f02e1ad…
Patch: https://github.com/kamailio/kamailio/commit/6e7b6cfabba6774627f942d7f02e1ad…
---
diff --git a/src/modules/auth_identity/doc/auth_identity_params.xml b/src/modules/auth_identity/doc/auth_identity_params.xml
index a252bbed6b..aefb49cdd0 100644
--- a/src/modules/auth_identity/doc/auth_identity_params.xml
+++ b/src/modules/auth_identity/doc/auth_identity_params.xml
@@ -190,11 +190,11 @@ modparam("auth_identity","cainfo_path","/etc/ssl/certs/ca-certificates.crt")
</section>
<section id="accept_pem_certs">
- <title><varname>accept_pem_certs</varname> ([0|1])</title>
+ <title><varname>accept_pem_certs</varname> (int)</title>
<para>Note: this parameter is for verifier service.</para>
<para>
Enables the acquired certificate processing if it is in PEM
- format.
+ format. Value can be 0 or 1.
</para>
<para>
This parameter is optional. The default value is "0".