*/
ipsec_mode_t mode;
+ /**
+ * Disable fragmenting packets across IP-TFS packets
+ */
+ bool iptfs_dont_frag;
+
/**
* Action to enforce if peer closes the CHILD_SA
*/
this->mode = mode;
}
+METHOD(child_sa_t, set_iptfs_dont_fragment, void,
+ private_child_sa_t *this)
+{
+ this->iptfs_dont_frag = TRUE;
+}
+
METHOD(child_sa_t, has_encap, bool,
private_child_sa_t *this)
{
.copy_df = !this->config->has_option(this->config, OPT_NO_COPY_DF),
.copy_ecn = !this->config->has_option(this->config, OPT_NO_COPY_ECN),
.copy_dscp = this->config->get_copy_dscp(this->config),
+ .iptfs_dont_frag = this->iptfs_dont_frag,
.label = label_for(this, LABEL_USE_SA),
.initiator = initiator,
.inbound = inbound,
.has_encap = _has_encap,
.get_ipcomp = _get_ipcomp,
.set_ipcomp = _set_ipcomp,
+ .set_iptfs_dont_fragment = _set_iptfs_dont_fragment,
.get_close_action = _get_close_action,
.set_close_action = _set_close_action,
.get_dpd_action = _get_dpd_action,
*/
void (*set_ipcomp)(child_sa_t *this, ipcomp_transform_t ipcomp);
+ /**
+ * Disable fragmenting messages across multiple IP-TFS packets. Only
+ * relevant with MODE_IPTFS.
+ */
+ void (*set_iptfs_dont_fragment)(child_sa_t *this);
+
/**
* Get the action to enforce if the remote peer closes the CHILD_SA.
*
projects / thirdparty / strongswan.git / commitdiff
