> Can you direct me to the place from where i can update the code so > that we can clear the cache externally
Please try the attached patch, it should flush the certificate cache if a CA section is deleted via "ipsec reload". I'll push it if this works for your setup. Regards Martin
>From d5ad6eb1e025f88c448e85cf5a690cc35673538e Mon Sep 17 00:00:00 2001 From: Martin Willi <[email protected]> Date: Mon, 7 Jun 2010 13:51:18 +0200 Subject: [PATCH] Flush certificate cache on CA delete --- src/libcharon/plugins/stroke/stroke_ca.c | 3 ++- 1 files changed, 2 insertions(+), 1 deletions(-) diff --git a/src/libcharon/plugins/stroke/stroke_ca.c b/src/libcharon/plugins/stroke/stroke_ca.c index 49146f1..0799584 100644 --- a/src/libcharon/plugins/stroke/stroke_ca.c +++ b/src/libcharon/plugins/stroke/stroke_ca.c @@ -306,7 +306,8 @@ static void del(private_stroke_ca_t *this, stroke_msg_t *msg) return; } ca_section_destroy(ca); - /* TODO: flush cached certs */ + + charon->credentials->flush_cache(charon->credentials, CERT_ANY); } /** -- 1.7.0.4
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
