Accept unencrypted Aggressive Mode messages.
authorTobias Brunner <tobias@strongswan.org>
Tue, 10 Jan 2012 09:58:29 +0000 (10:58 +0100)
committerTobias Brunner <tobias@strongswan.org>
Tue, 20 Mar 2012 16:31:34 +0000 (17:31 +0100)
Racoon does not encrypt the third message during Aggressive Mode.

src/libcharon/encoding/message.c

index e603617..99aca87 100644 (file)
@@ -1882,7 +1882,8 @@ static status_t decrypt_payloads(private_message_t *this, keymat_t *keymat)
                        encryption->destroy(encryption);
                }
                if (payload_is_known(type) && !was_encrypted &&
-                       !is_connectivity_check(this, payload))
+                       !is_connectivity_check(this, payload) &&
+                       this->exchange_type != AGGRESSIVE)
                {
                        rule = get_payload_rule(this, type);
                        if (!rule || rule->encrypted)