freeradius3: Update to 3.0.26

[feed/packages.git] / net / freeradius3 / patches / 002-disable-session-cache-CVE-2017-9148.patch

diff --git a/net/freeradius3/patches/002-disable-session-cache-CVE-2017-9148.patch b/net/freeradius3/patches/002-disable-session-cache-CVE-2017-9148.patch
index 73561f50f321719de7a68dd53942758d7725deb2..ed5ed009df4faf0ec52b5dae62fb486cbf000130 100644 (file)
--- a/net/freeradius3/patches/002-disable-session-cache-CVE-2017-9148.patch
+++ b/net/freeradius3/patches/002-disable-session-cache-CVE-2017-9148.patch
@@ -9,16 +9,16 @@ Last-Update: 2020-04-28
 
 --- a/src/main/tls.c
 +++ b/src/main/tls.c
-@@ -675,7 +675,7 @@ tls_session_t *tls_new_session(TALLOC_CT
-               state->mtu = vp->vp_integer;
+@@ -934,7 +934,7 @@ after_chain:
        }
+       if (vp) vp->vp_integer = state->mtu;
  
 -      if (conf->session_cache_enable) state->allow_session_resumption = true; /* otherwise it's false */
 +      if (/*conf->session_cache_enable*/0) state->allow_session_resumption = true; /* otherwise it's false */
  
        return state;
  }
-@@ -3332,7 +3332,7 @@ post_ca:
+@@ -4389,7 +4389,7 @@ post_ca:
        /*
         *      Callbacks, etc. for session resumption.
         */
@@ -27,7 +27,7 @@ Last-Update: 2020-04-28
                /*
                 *      Cache sessions on disk if requested.
                 */
-@@ -3402,7 +3402,7 @@ post_ca:
+@@ -4469,7 +4469,7 @@ post_ca:
        /*
         *      Setup session caching
         */
@@ -36,7 +36,7 @@ Last-Update: 2020-04-28
                /*
                 *      Create a unique context Id per EAP-TLS configuration.
                 */
-@@ -3571,7 +3571,7 @@ fr_tls_server_conf_t *tls_server_conf_pa
+@@ -4757,7 +4757,7 @@ fr_tls_server_conf_t *tls_server_conf_pa
                goto error;
        }