ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity

Enforce uniqueids=keep based on XAuth identity

This commit is contained in:
Martin Willi 2012-06-14 15:25:11 +02:00
parent f145ea29e0
commit 0ba1ddaa24
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/libcharon/sa/ikev1/tasks/xauth.c
View File

@ -142,6 +142,12 @@ static xauth_method_t *load_method(private_xauth_t* this)
*/
static bool allowed(private_xauth_t *this)
{
if (charon->ike_sa_manager->check_uniqueness(charon->ike_sa_manager,
this->ike_sa, FALSE))
{
DBG1(DBG_IKE, "cancelling XAuth due to uniqueness policy");
return FALSE;
}
if (!charon->bus->authorize(charon->bus, FALSE))
{
DBG1(DBG_IKE, "XAuth authorization hook forbids IKE_SA, cancelling");