checks proto_id in ipsecdoi_chkcmpids()

crypto/dist/ipsec-tools/ChangeLog

@@ -1,6 +1,7 @@
 2007-04-04  Yvan Vanhullebus  <vanhu@netasq.com>
 	* src/racoon/oakley.c: dumps peer's ID and peer's certificate
 	  subject /subjectaltname if they don't match.
+	* src/racoon/ipsec_doi.c: checks proto_id in ipsecdoi_chkcmpids().
 
 2007-03-26  Yvan Vanhullebus  <vanhu@netasq.com>
 	* src/racoon/isakmp_inf.c: Store the DPD main scheduler in ph1

crypto/dist/ipsec-tools/src/racoon/ipsec_doi.c

@@ -1,4 +1,4 @@
-/*	$NetBSD: ipsec_doi.c,v 1.29 2007/03/23 15:43:19 vanhu Exp $	*/
+/*	$NetBSD: ipsec_doi.c,v 1.30 2007/04/04 13:09:36 vanhu Exp $	*/
 
 /* Id: ipsec_doi.c,v 1.55 2006/08/17 09:20:41 vanhu Exp */
 
@@ -3480,6 +3480,14 @@ ipsecdoi_chkcmpids( idt, ids, exact )
 		return 1;
 	}
 
+	if(id_bs->proto_id != id_bt->proto_id){
+		plog(LLV_DEBUG, LOCATION, NULL,
+			"check and compare ids : proto_id mismatch %d != %d\n",
+			id_bs->proto_id, id_bt->proto_id);
+
+		return 1;
+	}
+
 	/* compare the ID data. */
 
 	switch (id_bt->type) {