Added Camellia, AES-CTR to default IKE proposal, if supported
authorMartin Willi <martin@revosec.ch>
Fri, 13 Aug 2010 12:25:14 +0000 (14:25 +0200)
committerMartin Willi <martin@revosec.ch>
Fri, 13 Aug 2010 15:11:53 +0000 (17:11 +0200)
src/libcharon/config/proposal.c

index e863930..2308ce7 100644 (file)
@@ -777,20 +777,24 @@ static void proposal_add_supported_ike(private_proposal_t *this)
                switch (encryption)
                {
                        case ENCR_AES_CBC:
+                       case ENCR_AES_CTR:
+                       case ENCR_CAMELLIA_CBC:
+                       case ENCR_CAMELLIA_CTR:
                                /* we assume that we support all AES sizes */
                                add_algorithm(this, ENCRYPTION_ALGORITHM, encryption, 128);
                                add_algorithm(this, ENCRYPTION_ALGORITHM, encryption, 192);
                                add_algorithm(this, ENCRYPTION_ALGORITHM, encryption, 256);
                                break;
                        case ENCR_3DES:
-                       case ENCR_AES_CTR:
+                               add_algorithm(this, ENCRYPTION_ALGORITHM, encryption, 0);
+                               break;
                        case ENCR_AES_CCM_ICV8:
                        case ENCR_AES_CCM_ICV12:
                        case ENCR_AES_CCM_ICV16:
                        case ENCR_AES_GCM_ICV8:
                        case ENCR_AES_GCM_ICV12:
                        case ENCR_AES_GCM_ICV16:
-                               add_algorithm(this, ENCRYPTION_ALGORITHM, encryption, 0);
+                               /* not yet in IKE */
                                break;
                        case ENCR_DES:
                                /* no, thanks */