]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 29e7fe6) | patch
ike-auth: Consider negotiated IKE proposal when selecting peer configs
authorTobias Brunner <tobias@strongswan.org>
Tue, 29 May 2018 14:57:49 +0000 (16:57 +0200)
committerTobias Brunner <tobias@strongswan.org>
Thu, 28 Jun 2018 16:46:41 +0000 (18:46 +0200)
commitda288a07aa248a38a3ba6dde5e7b110e8f85aced
tree1e9025557e3d778d4d989bbddaeee96c22340b23tree
parent29e7fe63c328be0af535a56c09c1302899490bf2commit | diff
ike-auth: Consider negotiated IKE proposal when selecting peer configs

In some scenarios we might find multiple usable peer configs with different
IKE proposals.  This is a problem if we use a config with non-matching
proposals that later causes IKE rekeying to fail.  It might even be a problem
already when creating the CHILD_SA if the proposals of IKE and CHILD_SA
are consistent.
src/libcharon/sa/ikev2/tasks/ike_auth.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.