[Swan-dev] questions about find_next_v2_host_connection
Andrew Cagney
andrew.cagney at gmail.com
Mon Dec 20 04:42:39 EET 2021
> > ================
> >
> > if (peer_id != NULL && !same_id(peer_id, &c->spd.that.id) &&
> > (c->spd.that.id.kind != ID_FROMCERT && !id_is_any(&c->spd.that.id))) {
> > continue; /* incompatible ID */
> > }
More coffee. I think this and the peer_id parameter should be deleted.
- the IKE_SA_INIT passes peer_id==NULL
- IKE_AUTH already does too much ID magic in too many places, above is
a distraction
- Child SA, is same
More information about the Swan-dev
mailing list