[Swan-dev] address pool leak in IKEv2's xauth?

Andrew Cagney andrew.cagney at gmail.com
Fri May 8 12:58:31 UTC 2020

I suspect there's another address pool leak in the IKE2 xauth/modecfg exchange.

The code calls lease_an_address() but then only saves it when:

                if (use_modecfg_addr_as_client_addr) {
                        if (!sameaddr(&c->spd.that.client.addr,
                                &ia.ipaddr)) {
                                /* Make the Internal IP address and
Netmask as
                                 * that client address

so what is use_modecfg_addr_as_client_addr?

More information about the Swan-dev mailing list