projects / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dbaeaaf) | patch
charon-tkm: Call esa_reset() when the inbound SA is deleted
authorTobias Brunner <tobias@strongswan.org>
Fri, 4 Aug 2017 12:02:42 +0000 (14:02 +0200)
committerTobias Brunner <tobias@strongswan.org>
Mon, 7 Aug 2017 08:46:00 +0000 (10:46 +0200)
commit772957778ccf1705e2d0bcf62203a1abb041b6ff
tree2bdeb6c5ff401e6b102ee00842ff737c39392578tree | snapshot
parentdbaeaaf6057fcdff397765a317b6eadf751acac1commit | diff
charon-tkm: Call esa_reset() when the inbound SA is deleted

After a rekeying the outbound SA and policy is deleted immediately, however,
the inbound SA is not removed until a few seconds later, so delayed packets
can still be processed.

This adds a flag to get_esa_id() that specifies the location of the
given SPI.
src/charon-tkm/src/tkm/tkm_kernel_ipsec.c diff | blob | history
src/charon-tkm/src/tkm/tkm_kernel_sad.c diff | blob | history
src/charon-tkm/src/tkm/tkm_kernel_sad.h diff | blob | history
src/charon-tkm/tests/kernel_sad_tests.c diff | blob | history
testing/tests/tkm/xfrmproxy-expire/evaltest.dat diff | blob | history
testing/tests/tkm/xfrmproxy-expire/hosts/moon/etc/strongswan.conf diff | blob | history
testing/tests/tkm/xfrmproxy-expire/hosts/moon/etc/tkm/tkm.conf diff | blob | history
testing/tests/tkm/xfrmproxy-rekey/evaltest.dat diff | blob | history
testing/tests/tkm/xfrmproxy-rekey/hosts/moon/etc/strongswan.conf diff | blob | history
testing/tests/tkm/xfrmproxy-rekey/hosts/sun/etc/ipsec.conf diff | blob | history
strongSwan - IPsec VPN