ikev1: Signal IKE_SA connection failure via bus

This is mainly for HA where a passive SA was already created when the IKE keys were derived. If e.g. an authentication error occurs later that SA wouldn't get cleaned up.
2018-08-23 17:54:29 +02:00 · 2018-08-23 17:54:29 +02:00 · 85a6fe2306
parent 4899a4c025
commit 85a6fe2306
1 changed files with 1 additions and 0 deletions
--- a/src/libcharon/sa/ikev1/task_manager_v1.c
+++ b/src/libcharon/sa/ikev1/task_manager_v1.c
@ -721,6 +721,7 @@ METHOD(task_manager_t, initiate, status_t,
 		{
 			case IKE_CONNECTING:
 				/* close after sending an INFORMATIONAL when unestablished */
+				charon->bus->ike_updown(charon->bus, this->ike_sa, FALSE);
 				return FAILED;
 			case IKE_DELETING:
 				/* close after sending a DELETE */