From: Martin Willi <martin@revosec.ch>
Date: Thu, 17 Nov 2011 09:45:41 +0000 (+0100)
Subject: Add fixed PSK authentication method to IKEv1 proposal for now
X-Git-Tag: 5.0.0~338^2~9^2~495
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=717333da98b45590035fc4461538882428191e40;p=thirdparty%2Fstrongswan.git

Add fixed PSK authentication method to IKEv1 proposal for now
---

diff --git a/src/libcharon/encoding/payloads/proposal_substructure.c b/src/libcharon/encoding/payloads/proposal_substructure.c
index 2a033b6a86..40caef858a 100644
--- a/src/libcharon/encoding/payloads/proposal_substructure.c
+++ b/src/libcharon/encoding/payloads/proposal_substructure.c
@@ -228,6 +228,17 @@ typedef enum {
 	IKEV1_LIFE_TYPE_KILOBYTES = 2,
 } ikev1_life_type_t;
 
+/**
+ * IKEv1 authenticaiton methods
+ */
+typedef enum {
+	IKEV1_AUTH_PSK = 1,
+	IKEV1_AUTH_DSS_SIG = 2,
+	IKEV1_AUTH_RSA_SIG = 3,
+	IKEV1_AUTH_RSA_ENC = 4,
+	IKEV1_AUTH_RSA_ENC_REV = 5,
+} ikev1_auth_method_t;
+
 METHOD(payload_t, verify, status_t,
 	private_proposal_substructure_t *this)
 {
@@ -766,7 +777,10 @@ static void set_from_proposal_v1_ike(private_proposal_substructure_t *this,
 	}
 	enumerator->destroy(enumerator);
 
-	/* TODO-IKEv1: Add lifetime, auth and other attributes */
+	/* TODO-IKEv1: Add lifetime, non-fixed auth-method and other attributes */
+	transform->add_transform_attribute(transform,
+		transform_attribute_create_value(TRANSFORM_ATTRIBUTE_V1,
+							TATTR_PH1_AUTH_METHOD, IKEV1_AUTH_PSK));
 
 	add_transform_substructure(this, transform);
 }