ikev1: Accept more than two certificate payloads
authorMartin Willi <martin@revosec.ch>
Thu, 20 Jun 2013 15:07:27 +0000 (17:07 +0200)
committerMartin Willi <martin@revosec.ch>
Fri, 11 Oct 2013 08:15:21 +0000 (10:15 +0200)
src/libcharon/encoding/message.c

index 3896d71..9fc108b 100644 (file)
@@ -439,7 +439,7 @@ static payload_rule_t id_prot_i_rules[] = {
        {NAT_D_V1,                                      0,      MAX_NAT_D_PAYLOADS,             FALSE,  FALSE},
        {NAT_D_DRAFT_00_03_V1,          0,      MAX_NAT_D_PAYLOADS,             FALSE,  FALSE},
        {ID_V1,                                         0,      1,                                              TRUE,   FALSE},
-       {CERTIFICATE_V1,                        0,      2,                                              TRUE,   FALSE},
+       {CERTIFICATE_V1,                        0,      MAX_CERT_PAYLOADS,              TRUE,   FALSE},
        {SIGNATURE_V1,                          0,      1,                                              TRUE,   FALSE},
        {HASH_V1,                                       0,      1,                                              TRUE,   FALSE},
        {FRAGMENT_V1,                           0,      1,                                              FALSE,  TRUE},
@@ -479,7 +479,7 @@ static payload_rule_t id_prot_r_rules[] = {
        {NAT_D_V1,                                      0,      MAX_NAT_D_PAYLOADS,             FALSE,  FALSE},
        {NAT_D_DRAFT_00_03_V1,          0,      MAX_NAT_D_PAYLOADS,             FALSE,  FALSE},
        {ID_V1,                                         0,      1,                                              TRUE,   FALSE},
-       {CERTIFICATE_V1,                        0,      2,                                              TRUE,   FALSE},
+       {CERTIFICATE_V1,                        0,      MAX_CERT_PAYLOADS,              TRUE,   FALSE},
        {SIGNATURE_V1,                          0,      1,                                              TRUE,   FALSE},
        {HASH_V1,                                       0,      1,                                              TRUE,   FALSE},
        {FRAGMENT_V1,                           0,      1,                                              FALSE,  TRUE},