* Postquantum Preshared Keys, draft-ietf-ipsecme-qr-ikev2
*/
EXT_PPK = (1<<15),
+
+ /**
+ * Responder accepts childless IKE_SAs, RFC 6023
+ */
+ EXT_IKE_CHILDLESS = (1<<16),
};
/**
/*
- * Copyright (C) 2008-2018 Tobias Brunner
+ * Copyright (C) 2008-2019 Tobias Brunner
* Copyright (C) 2005-2008 Martin Willi
* Copyright (C) 2005 Jan Hutter
* HSR Hochschule fuer Technik Rapperswil
{
message->add_notify(message, FALSE, USE_PPK, chunk_empty);
}
+ /* notify the peer if we accept childless IKE_SAs */
+ if (!this->old_sa && !this->initiator &&
+ ike_cfg->childless(ike_cfg) != CHILDLESS_NEVER)
+ {
+ message->add_notify(message, FALSE, CHILDLESS_IKEV2_SUPPORTED,
+ chunk_empty);
+ }
return TRUE;
}
EXT_IKE_REDIRECTION);
}
break;
+ case CHILDLESS_IKEV2_SUPPORTED:
+ if (this->initiator && !this->old_sa)
+ {
+ this->ike_sa->enable_extension(this->ike_sa,
+ EXT_IKE_CHILDLESS);
+ }
+ break;
default:
/* other notifies are handled elsewhere */
break;
projects / thirdparty / strongswan.git / commitdiff
