mark-mask-out = <hex encoded outbound Netfilter mark mask>
if-id-in = <hex encoded inbound XFRM interface ID>
if-id-out = <hex encoded outbound XFRM interface ID>
+ per-cpu-sas = <yes if per-CPU SAs enabled>
+ cpu = <CPU ID of per-CPU SA>
label = <hex encoded security label>
encr-alg = <ESP encryption algorithm name, if any>
encr-keysize = <ESP encryption key size, if applicable>
{
proposal_t *proposal;
uint16_t alg, ks;
- uint32_t if_id;
+ uint32_t if_id, cpu;
b->add_kv(b, "protocol", "%N", protocol_id_names,
child->get_protocol(child));
{
b->add_kv(b, "if-id-out", "%.8x", if_id);
}
+ if (child->use_per_cpu(child))
+ {
+ b->add_kv(b, "per-cpu-sas", "yes");
+ }
+ cpu = child->get_cpu(child);
+ if (cpu != CPU_ID_MAX)
+ {
+ b->add_kv(b, "cpu", "%u", cpu);
+ }
proposal = child->get_proposal(child);
if (proposal)
projects / thirdparty / strongswan.git / commitdiff
