diff options
author | Alexander Skorichenko <askorichenko@netgate.com> | 2021-10-15 16:04:44 +0000 |
---|---|---|
committer | Matthew Smith <mgsmith@netgate.com> | 2021-10-19 14:50:35 +0000 |
commit | 4c3c60daf7bccffc0f1fe59d8d09557bc62d00b0 (patch) | |
tree | 2ff3dd0503e1b2923e28c452527957c5489f1243 /src/plugins/crypto_openssl | |
parent | 0dfad21e88a5af3d429af5b429f7a7b5a9af7c04 (diff) |
bfd: fix bfd_key_id update
Type: fix
Currently, auth activation CLI command
"bfd upd session auth activate ... conf-key-id <cki> bfd-key-id <bki>"
allows to change both key-ids to new values at once.
But if only bfd-key-id should be corrected, e.g. as a result of mistyping,
we can't do that in a single operation, and have to deactivate auth first
and then reactivate it with a correctly entered pair of ids.
Currently, backend's bfd_auth_activate() function returns immediately,
with no action, if it finds that submitted conf-key-id matches the
current record. No check on bfd-key-id value is made.
With this fix, bfd_auth_activate() checks if session's bfd-key-id has to
be changed to a new value, and if so, it updates and logs appropriately.
Change-Id: I3b915a936cb1721707860bb503f70e7dd29e0ddd
Signed-off-by: Alexander Skorichenko <askorichenko@netgate.com>
Diffstat (limited to 'src/plugins/crypto_openssl')
0 files changed, 0 insertions, 0 deletions