[Swan-commit] Changes to ref refs/heads/master
Andrew Cagney
cagney at vault.libreswan.fi
Thu May 30 14:39:51 UTC 2019
New commits:
commit 48ae324fdecb78a093759e90922aa3d8e7cf3b25
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu May 30 09:52:04 2019 -0400
ikev2: correctly complete_v2_state_transition() when the unencrypted message is invalid
Changes the effectively useless:
complete_v2_state_transition(NULL, &MD, STF_FAIL)
to:
complete_v2_state_transition(ST, &MD, STF_IGNORE)
where STF_IGNORE is the secret code for drop the packet like a hot
potato and reverting any mid-state changes.
Things "worked" because both code paths, in the end, did nothing.
Correctly tracking Message IDs means that needs to change.
The tests playing with critical bits exercise this code path.
More information about the Swan-commit
mailing list