diff options
| author | Patrick Wildt <patrick@cvs.openbsd.org> | 2017-11-27 18:39:36 +0000 |
|---|---|---|
| committer | Patrick Wildt <patrick@cvs.openbsd.org> | 2017-11-27 18:39:36 +0000 |
| commit | 87623683ce77930613f9ca019ec47152eb8741b4 (patch) | |
| tree | 3aa5ad8075e9c330855bdbc93c4eae102695dc20 /sbin/iked/iked.c | |
| parent | aafa9eb6a846aadbea42ce35c3df135c110974c7 (diff) | |
Implement MOBIKE (RFC 4555) support in iked(8), with us acting as
responder. In practice this support means that clients like iPhones
can roam in different networks (LTE, WiFi) and change their external
addresses without having to re-do the whole handshake. It allows the
client to choose how and when to change the external tunnel endpoint
addresses on demand, depending on which network is better or even is
connected at all.
ok sthen@
tweaks from jmc@
tested by a handful
Diffstat (limited to 'sbin/iked/iked.c')
| -rw-r--r-- | sbin/iked/iked.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/sbin/iked/iked.c b/sbin/iked/iked.c index 09fef3ea877..5669f5a45b0 100644 --- a/sbin/iked/iked.c +++ b/sbin/iked/iked.c @@ -1,4 +1,4 @@ -/* $OpenBSD: iked.c,v 1.35 2017/11/08 16:57:41 patrick Exp $ */ +/* $OpenBSD: iked.c,v 1.36 2017/11/27 18:39:35 patrick Exp $ */ /* * Copyright (c) 2010-2013 Reyk Floeter <reyk@openbsd.org> @@ -250,6 +250,7 @@ parent_configure(struct iked *env) if (pledge("stdio rpath proc dns inet route sendfd", NULL) == -1) fatal("pledge"); + config_setmobike(env); config_setcoupled(env, env->sc_decoupled ? 0 : 1); config_setmode(env, env->sc_passive ? 1 : 0); config_setocsp(env); @@ -280,6 +281,7 @@ parent_reload(struct iked *env, int reset, const char *filename) /* Re-compile policies and skip steps */ config_setcompile(env, PROC_IKEV2); + config_setmobike(env); config_setcoupled(env, env->sc_decoupled ? 0 : 1); config_setmode(env, env->sc_passive ? 1 : 0); config_setocsp(env); |