proposal: Don't fail DH proposal matching if peer includes NONE
authorTobias Brunner <tobias@strongswan.org>
Fri, 28 Feb 2014 14:27:52 +0000 (15:27 +0100)
committerTobias Brunner <tobias@strongswan.org>
Mon, 31 Mar 2014 12:32:44 +0000 (14:32 +0200)
commita213944d4a9136d10779684fff7fb59f8b0846d4
tree62e6699bcd7dedc6ba21dd618599e3608e26c9fa
parent9fa7b037699edb9d6fead8f50e6877396f8178d3
proposal: Don't fail DH proposal matching if peer includes NONE

The DH transform is optional for ESP/AH proposals. The initiator can
include NONE (0) in its proposal to indicate that while it prefers to
do a DH exchange, the responder may still decide to not do so.

Fixes #532.
src/libcharon/config/proposal.c