[strongSwan-dev] Authorize hook called even if CRL is expired

Emeric POUPON emeric.poupon at stormshield.eu
Tue Aug 29 10:50:23 CEST 2017

>> As a workaround, how could we check the CRL validation status in our custom
>> plugin during the authorize hook?
> You can get the current remote auth_cfg from the IKE_SA and look if you
> have any RULE_CRL_VALIDATION and if so what value it has.

Thanks for your answer!



More information about the Dev mailing list