wg_noise: ensure non-zero'd handshakes have a valid local index - wireguard-freebsd - WireGuard implementation for the FreeBSD kernel

diff options

author	Matt Dunwoodie <ncon@noconroy.net>	2021-03-22 01:02:54 +1100
committer	Jason A. Donenfeld <Jason@zx2c4.com>	2021-03-22 11:46:02 -0600
commit	fbf76929c093a7b165e198d9333f25faaad2083e (patch)
tree	f26f0be623a665d6397b25805f94ff77cf7fe8dc /COPYING
parent	compat: backport callout_func_t to 12.1 (diff)
download	wireguard-freebsd-fbf76929c093a7b165e198d9333f25faaad2083e.tar.xz wireguard-freebsd-fbf76929c093a7b165e198d9333f25faaad2083e.zip

wg_noise: ensure non-zero'd handshakes have a valid local index

As reported by: https://marc.info/?l=openbsd-bugs&m=161618496905444&w=2 In particular, when consuming an initiation, we don't generate the index until creating the response (which is incorrect). If we attempt to create an initiation between these processes, we drop any outstanding handshake which in this case has index 0 as set when consuming the initiation. The fix attached is to generate the index when consuming the initiation so that any spurious initiation creation can drop a valid index. The patch also consolidates setting fields on the handshake. Signed-off-by: Matt Dunwoodie <ncon@noconroy.net>

Diffstat (limited to 'COPYING')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: