CVSROOT: /cvs Module name: src Changes by: [email protected] 2011/01/12 11:49:21
Modified files:
sys/net : pfkeyv2.c
Log message:
Never include SADB_X_EXT_REMOTE_AUTH (which is either a
passphrase or an RSA key) in the reply message. There's
nothing that justifies this behavior and PF_KEY RFC prefers
to exclude keys and other sensitive material from replies.
Discussed with reyk, no objections from deraadt.
