aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/kernel_libipsec/kernel_libipsec_router.c
diff options
context:
space:
mode:
authorMartin Willi <martin@revosec.ch>2013-09-18 14:11:40 +0200
committerMartin Willi <martin@revosec.ch>2013-09-30 13:51:12 +0200
commitd2e4dd75b7967a7f2c024a1b4c2c1c916ea036ba (patch)
treeb3acaa3bd5add5da1b3b130aaa9491d31a3c2f37 /src/libcharon/plugins/kernel_libipsec/kernel_libipsec_router.c
parent9c19d7ca31f2a801935580f4b737f1ed3720f469 (diff)
downloadstrongswan-d2e4dd75b7967a7f2c024a1b4c2c1c916ea036ba.tar.bz2
strongswan-d2e4dd75b7967a7f2c024a1b4c2c1c916ea036ba.tar.xz
ikev1: Accept reauthentication attempts with a keep unique policy from same host
When we have a "keep" unique policy in place, we have to be less strict in rejecting Main/Aggressive Modes to enforce it. If the host/port equals to that of an existing ISAKMP SA, we assume it is a reauthentication attempt and accept the new SA (to replace the old).
Diffstat (limited to 'src/libcharon/plugins/kernel_libipsec/kernel_libipsec_router.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-23 12:26:32 +0000