ikev1: Inverse check when applying received KE value during Quick Mode5.3.0rc1

Fixes Quick Mode negotiation when PFS is in use.
author: Martin Willi <martin@revosec.ch> 2015-03-24 09:37:38 +0100
committer: Martin Willi <martin@revosec.ch> 2015-03-24 09:37:38 +0100
commit: 66147ef6700d4ad1af00083580823fa48b129408 (patch)
tree: 5c52b230b82cb33b6ae662cc23dcefc68fff5426
parent: cf9befcba480c053e218b4dab4fd8d849253ec78 (diff)
download: strongswan-5.3.0rc1.tar.bz2
strongswan-5.3.0rc1.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/libcharon/sa/ikev1/tasks/quick_mode.c b/src/libcharon/sa/ikev1/tasks/quick_mode.c
index b48ace4ca..982c12851 100644
--- a/src/libcharon/sa/ikev1/tasks/quick_mode.c
+++ b/src/libcharon/sa/ikev1/tasks/quick_mode.c
@@ -493,7 +493,7 @@ static bool get_ke(private_quick_mode_t *this, message_t *message)
 		DBG1(DBG_IKE, "KE payload missing");
 		return FALSE;
 	}
-	if (this->dh->set_other_public_value(this->dh,
+	if (!this->dh->set_other_public_value(this->dh,
 								ke_payload->get_key_exchange_data(ke_payload)))
 	{
 		DBG1(DBG_IKE, "unable to apply received KE value");
author	Martin Willi <martin@revosec.ch>	2015-03-24 09:37:38 +0100
committer	Martin Willi <martin@revosec.ch>	2015-03-24 09:37:38 +0100
commit	66147ef6700d4ad1af00083580823fa48b129408 (patch)
tree	5c52b230b82cb33b6ae662cc23dcefc68fff5426
parent	cf9befcba480c053e218b4dab4fd8d849253ec78 (diff)
download	strongswan-5.3.0rc1.tar.bz2 strongswan-5.3.0rc1.tar.xz