Remove check that is now a duplicate due to recent refactoring.

author patrick <patrick@openbsd.org>

Mon, 4 Dec 2017 16:57:40 +0000 (16:57 +0000)

committer patrick <patrick@openbsd.org>

Mon, 4 Dec 2017 16:57:40 +0000 (16:57 +0000)
author patrick <patrick@openbsd.org>
Mon, 4 Dec 2017 16:57:40 +0000 (16:57 +0000)
committer patrick <patrick@openbsd.org>
Mon, 4 Dec 2017 16:57:40 +0000 (16:57 +0000)
diff --git a/sbin/iked/ikev2_pld.c b/sbin/iked/ikev2_pld.c

index 07efd45..02acfd2 100644 (file)
--- a/sbin/iked/ikev2_pld.c
+++ b/sbin/iked/ikev2_pld.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: ikev2_pld.c,v 1.65 2017/12/04 16:52:16 patrick Exp $  */
+/*     $OpenBSD: ikev2_pld.c,v 1.66 2017/12/04 16:57:40 patrick Exp $  */
  
  /*
   * Copyright (c) 2010-2013 Reyk Floeter <reyk@openbsd.org>
@@ -303,16 +303,6 @@ ikev2_validate_sa(struct iked_message *msg, size_t offset, size_t left,
                     "size (%zu < %zu)", __func__, left, sap_length);
                 return (-1);
         }
-       /*
-        * NB: There might be more proposals, we parse only the first one.
-        * This condition must never be true.
-        */
-       if (left < sap_length) {
-               log_debug("%s: payload malformed: SA payload length mismatches "
-                   "proposal substructure length (%lu < %zu)", __func__,
-                   left, sap_length);
-               return (-1);
-       }
         /*
          * If there is only one proposal, sap_length must be the
          * total payload size.
author	patrick <patrick@openbsd.org>
	Mon, 4 Dec 2017 16:57:40 +0000 (16:57 +0000)
committer	patrick <patrick@openbsd.org>
	Mon, 4 Dec 2017 16:57:40 +0000 (16:57 +0000)