diff options
author | Jan Klemkow <jan@cvs.openbsd.org> | 2024-01-15 21:37:59 +0000 |
---|---|---|
committer | Jan Klemkow <jan@cvs.openbsd.org> | 2024-01-15 21:37:59 +0000 |
commit | 354db2035c5326bd5285abc79afac274336b11a1 (patch) | |
tree | 4abdd8a85436e23adc6b1c86c73169388a3eb845 /sbin/iked | |
parent | 5083831bad2a9649a50ffdfab01961d4c7405c49 (diff) |
Add debug message for no policy found.
In this case iked would just silently drop incomming connections.
Thus, the user has a chance to figure out whats going on.
ok tobhe@
Diffstat (limited to 'sbin/iked')
-rw-r--r-- | sbin/iked/ikev2.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/sbin/iked/ikev2.c b/sbin/iked/ikev2.c index e8eefdbcc5b..27f246c3a21 100644 --- a/sbin/iked/ikev2.c +++ b/sbin/iked/ikev2.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ikev2.c,v 1.381 2024/01/15 15:29:00 tobhe Exp $ */ +/* $OpenBSD: ikev2.c,v 1.382 2024/01/15 21:37:58 jan Exp $ */ /* * Copyright (c) 2019 Tobias Heider <tobias.heider@stusta.de> @@ -657,6 +657,7 @@ ikev2_recv(struct iked *env, struct iked_message *msg) initiator); msg->msg_msgid = betoh32(hdr->ike_msgid); if (policy_lookup(env, msg, NULL, NULL, 0) != 0) { + log_debug("%s: no compatible policy found", __func__); ikestat_inc(env, ikes_msg_rcvd_dropped); return; } |