vici: With start_action=start, terminate IKE_SA without children on unload

author Tobias Brunner <tobias@strongswan.org>

Wed, 1 Jul 2020 11:49:58 +0000 (13:49 +0200)

committer Tobias Brunner <tobias@strongswan.org>

Wed, 1 Jul 2020 13:59:41 +0000 (15:59 +0200)
author Tobias Brunner <tobias@strongswan.org>
Wed, 1 Jul 2020 11:49:58 +0000 (13:49 +0200)
committer Tobias Brunner <tobias@strongswan.org>
Wed, 1 Jul 2020 13:59:41 +0000 (15:59 +0200)
diff --git a/src/libcharon/plugins/vici/vici_config.c b/src/libcharon/plugins/vici/vici_config.c

index 3ce1e36192560d70da1c2138d7a770072eed531d..1eb7a24cd6cf46d9085f7f8b26064c5ec92b442d 100644 (file)
--- a/src/libcharon/plugins/vici/vici_config.c
+++ b/src/libcharon/plugins/vici/vici_config.c
@@ -2202,9 +2202,9 @@ static void clear_start_action(private_vici_config_t *this, char *peer_name,
                                 }
                                 children->destroy(children);
  
-                               if (id && !others)
+                               if (!ike_sa->get_child_count(ike_sa) || (id && !others))
                                 {
-                                       /* found matching children only, delete full IKE_SA */
+                                       /* found no children or only matching, delete IKE_SA */
                                         id = ike_sa->get_unique_id(ike_sa);
                                         array_insert_create_value(&ikeids, sizeof(id),
                                                                                           ARRAY_TAIL, &id);
author	Tobias Brunner <tobias@strongswan.org>
	Wed, 1 Jul 2020 11:49:58 +0000 (13:49 +0200)
committer	Tobias Brunner <tobias@strongswan.org>
	Wed, 1 Jul 2020 13:59:41 +0000 (15:59 +0200)