diff options
| author | Tobias Brunner <tobias@strongswan.org> | 2012-09-18 14:39:45 +0200 |
|---|---|---|
| committer | Tobias Brunner <tobias@strongswan.org> | 2012-09-18 14:40:40 +0200 |
| commit | e6fcc172f889681ddcefff50a186135b3cfb8b6b (patch) | |
| tree | 0104193145f9706bbfd11a2cc8c92c7ea697ab17 /src/charon-nm/nm | |
| parent | e596d0ef1e6589ba936cc925cba38f3d9498d0cf (diff) | |
| download | strongswan-e6fcc172f889681ddcefff50a186135b3cfb8b6b.tar.bz2 strongswan-e6fcc172f889681ddcefff50a186135b3cfb8b6b.tar.xz | |
Use AUTH_RULE_IDENTITY_LOOSE in NetworkManager backend
Diffstat (limited to 'src/charon-nm/nm')
| -rw-r--r-- | src/charon-nm/nm/nm_service.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/src/charon-nm/nm/nm_service.c b/src/charon-nm/nm/nm_service.c index 461837c0c..fd96f436b 100644 --- a/src/charon-nm/nm/nm_service.c +++ b/src/charon-nm/nm/nm_service.c @@ -277,7 +277,7 @@ static gboolean connect_(NMVPNPlugin *plugin, NMConnection *connection, auth_class_t auth_class = AUTH_CLASS_EAP; certificate_t *cert = NULL; x509_t *x509; - bool agent = FALSE, smartcard = FALSE; + bool agent = FALSE, smartcard = FALSE, loose_gateway_id = FALSE; lifetime_cfg_t lifetime = { .time = { .life = 10800 /* 3h */, @@ -380,6 +380,7 @@ static gboolean connect_(NMVPNPlugin *plugin, NMConnection *connection, * included in the gateway certificate. */ gateway = identification_create_from_string((char*)address); DBG1(DBG_CFG, "using CA certificate, gateway identity '%Y'", gateway); + loose_gateway_id = TRUE; } if (auth_class == AUTH_CLASS_EAP) @@ -519,6 +520,7 @@ static gboolean connect_(NMVPNPlugin *plugin, NMConnection *connection, auth = auth_cfg_create(); auth->add(auth, AUTH_RULE_AUTH_CLASS, AUTH_CLASS_PUBKEY); auth->add(auth, AUTH_RULE_IDENTITY, gateway); + auth->add(auth, AUTH_RULE_IDENTITY_LOOSE, loose_gateway_id); peer_cfg->add_auth_cfg(peer_cfg, auth, FALSE); child_cfg = child_cfg_create(priv->name, &lifetime, |