New commits:
commit 3d2df469a35c38a890fd37ff1e5b25ac00806452
Author: Andrew Cagney <[email protected]>
Date: Thu Dec 16 09:19:47 2021 -0500
connections: overhaul refine_host_connection*()
- drop IKEv1 only lset_t auth_policy parameter
instead have IKEv1 pass in authby
- move non-ID checks, such as d->ike_version, to loop start
get the easy stuff done first
- check matching_id before going on to certificates
(leave .connalias check as is)
- cleanup check for keying material
-> strange how there's no ECDSA
-> strange how PSK doesn't check for a secret
_______________________________________________
Swan-commit mailing list
[email protected]
https://lists.libreswan.org/mailman/listinfo/swan-commit
