diff options
| author | Tobias Brunner <tobias@strongswan.org> | 2017-09-06 16:41:42 +0200 |
|---|---|---|
| committer | Tobias Brunner <tobias@strongswan.org> | 2017-09-18 10:51:39 +0200 |
| commit | e7276f78aae95905d9dfe7ded485d6771c4fcaa0 (patch) | |
| tree | 0599fffb391a279c8b2bb75534d0294a8c1e1cfb | |
| parent | 6e861947a018e659a813f08214671d7da32a8463 (diff) | |
| download | strongswan-e7276f78aae95905d9dfe7ded485d6771c4fcaa0.tar.bz2 strongswan-e7276f78aae95905d9dfe7ded485d6771c4fcaa0.tar.xz | |
child-create: Don't consider a DH group mismatch as failure as responder
This causes problems e.g. on Android where we handle the alert (and
reestablish the IKE_SA) even though it usually is no problem if the
peer retries with the requested group. We don't consider it as a
failure on the initiator either.
| -rw-r--r-- | src/libcharon/sa/ikev2/tasks/child_create.c | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/src/libcharon/sa/ikev2/tasks/child_create.c b/src/libcharon/sa/ikev2/tasks/child_create.c index cac3bc0a2..4d4d72e0b 100644 --- a/src/libcharon/sa/ikev2/tasks/child_create.c +++ b/src/libcharon/sa/ikev2/tasks/child_create.c @@ -1377,7 +1377,6 @@ METHOD(task_t, build_r, status_t, uint16_t group = htons(this->dh_group); message->add_notify(message, FALSE, INVALID_KE_PAYLOAD, chunk_from_thing(group)); - handle_child_sa_failure(this, message); return SUCCESS; } case FAILED: |