Hello Nan,
the source code in question is
if (n->isan_spisize != COOKIE_SIZE * 2 || pbs_left(pbs) < COOKIE_SIZE
* 2)
{
loglog(RC_LOG_SERIOUS
, "DPD: R_U_THERE_ACK has invalid SPI length (%d)"
, n->isan_spisize);
Hi,
I have seen this error in the pluto debug log "secure" when testing DPD against
my SeGW, I wonder what this error really means. Per RFC3706, the SPI length
should be set to 16 in the R_U_THERE/R_U_THERE_ACK messages. So does this error
mean something else wrong in the R_U_THERE_ACK sent by