From 4c3914b6f93143d787ff19912dde31cf1d391816 Mon Sep 17 00:00:00 2001 From: Tobias Brunner Date: Thu, 22 Oct 2020 13:13:00 +0200 Subject: [PATCH] proposal: Accept NONE for additional key exchanges also for IKE proposals --- src/libstrongswan/crypto/proposal/proposal.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/src/libstrongswan/crypto/proposal/proposal.c b/src/libstrongswan/crypto/proposal/proposal.c index ec81e2bee1..3e6f44fa2f 100644 --- a/src/libstrongswan/crypto/proposal/proposal.c +++ b/src/libstrongswan/crypto/proposal/proposal.c @@ -323,7 +323,8 @@ static bool select_algo(private_proposal_t *this, proposal_t *other, if (is_ke_transform(type)) { - optional = this->protocol == PROTO_ESP || this->protocol == PROTO_AH; + optional = this->protocol == PROTO_ESP || this->protocol == PROTO_AH || + type != KEY_EXCHANGE_METHOD; } e1 = create_enumerator(this, type);