artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d728cab) | patch
Since ikev2_init_recv() is supposed to only handle responses to an
authorpatrick <patrick@openbsd.org>
Sat, 23 Dec 2017 10:30:54 +0000 (10:30 +0000)
committerpatrick <patrick@openbsd.org>
Sat, 23 Dec 2017 10:30:54 +0000 (10:30 +0000)
commit5785bde7dd85ed27292a67015126e3f7950367ae
tree9b1b4ccec757c10628957a2700e90ef83e4dc8edtree | snapshot
parentd728cabeb80305e1e053d779ee180cea6615944dcommit | diff
Since ikev2_init_recv() is supposed to only handle responses to an
exchange that we initiatiated, we are not allowed to respond to such
a msg.  Also we don't need the DH check in ikev2_sa_initiator_dh() as
it's only called when we initiate, so the check would not run, or when
we get a Create Child SA response, where an error should only lead to
us having another attempt at an exchange.

Found by and ok markus@
sbin/iked/ikev2.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim