From 438318c6c3b15db75bf5e18294edf9375a1a97f2 Mon Sep 17 00:00:00 2001 From: Martin Willi Date: Tue, 10 Mar 2015 15:08:58 +0100 Subject: ha: Destroy synced IKE_SA if no configuration is found during update --- src/libcharon/plugins/ha/ha_dispatcher.c | 3 +++ 1 file changed, 3 insertions(+) (limited to 'src') diff --git a/src/libcharon/plugins/ha/ha_dispatcher.c b/src/libcharon/plugins/ha/ha_dispatcher.c index 983f9d8fc..88160fe4f 100644 --- a/src/libcharon/plugins/ha/ha_dispatcher.c +++ b/src/libcharon/plugins/ha/ha_dispatcher.c @@ -373,6 +373,9 @@ static void process_ike_update(private_ha_dispatcher_t *this, else { DBG1(DBG_IKE, "HA is missing nodes peer configuration"); + charon->ike_sa_manager->checkin_and_destroy( + charon->ike_sa_manager, ike_sa); + ike_sa = NULL; } break; case HA_EXTENSIONS: -- cgit v1.2.3