child-sa: No need to find reqid of existing trap policy
authorTobias Brunner <tobias@strongswan.org>
Fri, 3 Nov 2017 10:49:45 +0000 (11:49 +0100)
committerTobias Brunner <tobias@strongswan.org>
Thu, 22 Feb 2018 10:31:05 +0000 (11:31 +0100)
commitc9998e5fea26d1dbe2c2a632aee4ab23b0309d6b
tree78a2da214695dee91feb82a0f22118f48f45e359
parent24fa1bb02ad5de0fe01c5aa515ee3c2dd3d42206
child-sa: No need to find reqid of existing trap policy

When initiating a trap policy we explicitly pass the reqid along.  I guess
the lookup was useful to get the same reqid if a trapped CHILD_SA is manually
initiated.  However, we now get the same reqid anyway if there is no
narrowing.  And if the traffic selectors do get narrowed the reqid will be
different but that shouldn't be a problem as that doesn't cause an issue with
any temporary SAs in the kernel (this is why we pass the reqid to the
triggered CHILD_SA, otherwise, no new acquire would get triggered for
traffic that doesn't match the wider trap policy).
src/libcharon/sa/child_sa.c