[Swan] Can you elaborate on this ?

[Philippe Vouters]

Paul,

Part or all of Elison's problems is caused by this in 
./programs/pluto/ikev1.c:
      {
         /* packet was not encryped -- should it have been? */

         if (smc->flags & SMF_INPUT_ENCRYPTED)
         {
             loglog(RC_LOG_SERIOUS, "packet rejected: should have been 
encrypted");
             SEND_NOTIFICATION(INVALID_FLAGS);
             return;
         }
It gets conditionally executed when if (md->hdr.isa_flags & 
ISAKMP_FLAG_ENCRYPTION) reveals false.
SMF_INPUT_ENCRYPTED is a macro inside the same source file which is set to:
#define SMF_INPUT_ENCRYPTED     LELEM(OAKLEY_AUTH_ROOF + 2)

OAKLEY_AUTH_ROOF is defined as:
#define OAKLEY_AUTH_ROOF           8  /*roof on auth values THAT WE 
SUPPORT */
./include/ietf_constants.h

Can you justify a bit more on the pertinence or not of the above 
loglog(RC_LOG_SERIOUS,...) that Elison faces ????

-- 
Philippe Vouters (Fontainebleau/France)
URL: http://vouters.dyndns.org/
SIP: sip:Vouters at sip.linphone.org