check_policy
if (!check_policy(exchange, sa, msg->isakmp_sa)) {
if (message_negotiate_sa(msg, check_policy))
static int check_policy(struct exchange *, struct sa *, struct sa *);
