iv_gen: Provide external sequence number (IKE, ESP)

This prevents duplicate sequential IVs in case of a HA failover.
author: Tobias Brunner <tobias@strongswan.org> 2013-08-05 15:41:45 +0200
committer: Tobias Brunner <tobias@strongswan.org> 2013-10-11 15:55:40 +0200
commit: e8229ad558efcb7b07c6ef0f77269120d49500f9 (patch)
tree: 381b9b0c797ba4642775b9aa0f933dbb89239a47 /src/libcharon/encoding/payloads/encryption_payload.h
parent: d74c254dfd88b497a5262a3d8ce2dc7a684c74a8 (diff)
download: strongswan-e8229ad558efcb7b07c6ef0f77269120d49500f9.tar.bz2
strongswan-e8229ad558efcb7b07c6ef0f77269120d49500f9.tar.xz
1 files changed, 3 insertions, 1 deletions
diff --git a/src/libcharon/encoding/payloads/encryption_payload.h b/src/libcharon/encoding/payloads/encryption_payload.h
index 5c6069339..f4fc7d667 100644
--- a/src/libcharon/encoding/payloads/encryption_payload.h
+++ b/src/libcharon/encoding/payloads/encryption_payload.h
@@ -71,13 +71,15 @@ struct encryption_payload_t {
 	/**
 	 * Generate, encrypt and sign contained payloads.
 	 *
+	 * @param mid			message ID
 	 * @param assoc			associated data
 	 * @return
 	 * 						- SUCCESS if encryption successful
 	 * 						- FAILED if encryption failed
 	 * 						- INVALID_STATE if aead not supplied, but needed
 	 */
-	status_t (*encrypt) (encryption_payload_t *this, chunk_t assoc);
+	status_t (*encrypt) (encryption_payload_t *this, u_int64_t mid,
+						 chunk_t assoc);
 
 	/**
 	 * Decrypt, verify and parse contained payloads.
author	Tobias Brunner <tobias@strongswan.org>	2013-08-05 15:41:45 +0200
committer	Tobias Brunner <tobias@strongswan.org>	2013-10-11 15:55:40 +0200
commit	e8229ad558efcb7b07c6ef0f77269120d49500f9 (patch)
tree	381b9b0c797ba4642775b9aa0f933dbb89239a47 /src/libcharon/encoding/payloads/encryption_payload.h
parent	d74c254dfd88b497a5262a3d8ce2dc7a684c74a8 (diff)
download	strongswan-e8229ad558efcb7b07c6ef0f77269120d49500f9.tar.bz2 strongswan-e8229ad558efcb7b07c6ef0f77269120d49500f9.tar.xz