From: Tobias Brunner <tobias@strongswan.org>
Date: Fri, 28 May 2010 13:43:12 +0000 (+0200)
Subject: Do not install trap policy if remote host is %any.
X-Git-Tag: 4.4.1~212
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=d070e0a6d1706bd76715988db3951269a3f3390d;p=thirdparty%2Fstrongswan.git

Do not install trap policy if remote host is %any.
---

diff --git a/src/libcharon/sa/trap_manager.c b/src/libcharon/sa/trap_manager.c
index 878170c837..80bf647cdf 100644
--- a/src/libcharon/sa/trap_manager.c
+++ b/src/libcharon/sa/trap_manager.c
@@ -128,7 +128,7 @@ static u_int32_t install(private_trap_manager_t *this, peer_cfg_t *peer,
 	ike_cfg = peer->get_ike_cfg(peer);
 	other = host_create_from_dns(ike_cfg->get_other_addr(ike_cfg),
 								 0, ike_cfg->get_other_port(ike_cfg));
-	if (!other)
+	if (!other || other->is_anyaddr(other))
 	{
 		DBG1(DBG_CFG, "installing trap failed, remote address unknown");
 		return 0;