proposal: Make all key exchange transforms optional in ESP/AH proposals

author Tobias Brunner <tobias@strongswan.org>

Tue, 5 Nov 2019 09:22:36 +0000 (10:22 +0100)

committer Tobias Brunner <tobias@strongswan.org>

Wed, 22 Mar 2023 10:35:10 +0000 (11:35 +0100)
author Tobias Brunner <tobias@strongswan.org>
Tue, 5 Nov 2019 09:22:36 +0000 (10:22 +0100)
committer Tobias Brunner <tobias@strongswan.org>
Wed, 22 Mar 2023 10:35:10 +0000 (11:35 +0100)
diff --git a/src/libstrongswan/crypto/proposal/proposal.c b/src/libstrongswan/crypto/proposal/proposal.c

index 5c568a081685d168eaef97905a390b06e06bc0c8..ba6b3f0f2f01c1b4542e3021a4309e7d17067c62 100644 (file)
--- a/src/libstrongswan/crypto/proposal/proposal.c
+++ b/src/libstrongswan/crypto/proposal/proposal.c
@@ -322,7 +322,7 @@ static bool select_algo(private_proposal_t *this, proposal_t *other,
         uint16_t alg1, alg2, ks1, ks2;
         bool found = FALSE, optional = FALSE;
  
-       if (type == KEY_EXCHANGE_METHOD)
+       if (is_ke_transform(type))
         {
                 optional = this->protocol == PROTO_ESP || this->protocol == PROTO_AH;
         }
author	Tobias Brunner <tobias@strongswan.org>
	Tue, 5 Nov 2019 09:22:36 +0000 (10:22 +0100)
committer	Tobias Brunner <tobias@strongswan.org>
	Wed, 22 Mar 2023 10:35:10 +0000 (11:35 +0100)