CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

author	ae <ae@FreeBSD.org>
	Tue, 2 Jun 2015 03:51:33 +0000 (03:51 +0000)
committer	ae <ae@FreeBSD.org>
	Tue, 2 Jun 2015 03:51:33 +0000 (03:51 +0000)
commit	3c9fd219636d39ff34d957bf7cb13945826529b8
tree	48da68d155f90e660ef443637448f98868106c2f	tree \| snapshot
parent	bf9acc9587cc1734e0b30b1318463ab75428ba52	commit \| diff

MFC r283101:
  Teach key_expire() send SADB_EXPIRE message with the SADB_EXT_LIFETIME_HARD
  extension header type. The key_flush_sad() now will send SADB_EXPIRE
  message when HARD lifetime expires. This is required by RFC 2367 and some
  keying daemons rely on these messages. HARD lifetime messages have
  precedence over SOFT lifetime messages, so now they will be checked first.
  Also now SADB_EXPIRE messages will be send even the SA has not been used,
  because keying daemons might want to rekey such SA.

  PR: 200282, 200283

MFC r283102:
  Change SA's state before sending SADB_EXPIRE message. This state will
  be reported to keying daemon.