]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 57e68ab) | patch
ike-delete: Don't call reestablish() when reauthenticating
authorTobias Brunner <tobias@strongswan.org>
Wed, 16 Jun 2021 11:54:18 +0000 (13:54 +0200)
committerTobias Brunner <tobias@strongswan.org>
Tue, 24 Aug 2021 12:31:55 +0000 (14:31 +0200)
commit48fbe1d2d5ab452258de6f073f2b100d1a0eedb3
tree2f1449bf14aef773c1d4b02fe2c253d54bb83ad5tree
parent57e68ab9c57f30a84c9e3022bbcd97278b18952acommit | diff
ike-delete: Don't call reestablish() when reauthenticating

If we initiated a make-before-break reauthentication and the peer
concurrently deletes the IKE_SA (e.g. because it uses break-before-make
reauthentication), we would create a duplicate IKE_SA (the condition forces
a recreation of all existing CHILD_SAs because reestablish() is also called
to complete a break-before-make reauthentication).
src/libcharon/sa/ikev2/tasks/ike_delete.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.