[Swan-commit] Changes to ref refs/heads/master
cagney at vault.libreswan.fi
Thu Feb 20 16:50:09 UTC 2020
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu Feb 20 10:11:16 2020 -0500
ikev2: decode notify payloads into the message digest
Instead of storing the message digest's notify payloads directly into
struct state or local variables, store them in the message digest, and
then access the values as needed.
This is in preparation for offloading the processing of the cert
payload: during IKE_AUTH the notify payloads are parsed before the
certificates are decoded (no point decoding certs if the packet is
crap) but the extracted values are used after.
However, this does also open the opportunity for some interesting
cleanups. For instance, merging decode_v2N_ike_auth_child(),
decode_v2N_ike_auth_request() and decode_v2N_ike_auth_response().
More information about the Swan-commit