ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity

vici: Add option to reauthenticae instead of rekey an IKEv2 SA

This commit is contained in:
Tobias Brunner 2018-08-23 16:16:47 +02:00
parent 720a8bedaa
commit a20527438a
2 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
src/libcharon/plugins/vici/README.md
View File

@ -302,6 +302,7 @@ Initiate the rekeying of an SA.
ike = <rekey an IKE_SA by configuration name>
child-id = <rekey a CHILD_SA by its reqid>
ike-id = <rekey an IKE_SA by its unique id>
reauth = <reauthenticate instead of rekey an IKEv2 SA>
} => {
success = <yes or no>
matches = <number of matched SAs>

4
src/libcharon/plugins/vici/vici_control.c
View File

@ -373,11 +373,13 @@ CALLBACK(rekey, vici_message_t*,
ike_sa_t *ike_sa;
child_sa_t *child_sa;
vici_builder_t *builder;
bool reauth;
child = request->get_str(request, NULL, "child");
ike = request->get_str(request, NULL, "ike");
child_id = request->get_int(request, 0, "child-id");
ike_id = request->get_int(request, 0, "ike-id");
reauth = request->get_bool(request, FALSE, "reauth");
if (!child && !ike && !ike_id && !child_id)
{
@ -438,7 +440,7 @@ CALLBACK(rekey, vici_message_t*,
(ike_id && ike_id == ike_sa->get_unique_id(ike_sa)))
{
lib->processor->queue_job(lib->processor,
(job_t*)rekey_ike_sa_job_create(ike_sa->get_id(ike_sa), FALSE));
(job_t*)rekey_ike_sa_job_create(ike_sa->get_id(ike_sa), reauth));
found++;
}
}