sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-17 00:00:59 -04:00
Code Issues Projects Releases Wiki Activity

kernel-libipsec: Don't ignore policies of type != POLICY_IPSEC

Browse Source 
This actually broke rekeying due to the DROP policies that are
temporarily added, which broke the refcount as the ignored policies
were not ignored in del_policy() (the type is not known there).
This commit is contained in:
Tobias Brunner 2013-10-10 15:41:29 +02:00
parent eeb34af069
commit cd25d291f7
1 changed files with 0 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/libcharon/plugins/kernel_libipsec/kernel_libipsec_ipsec.c
View File

@ -523,11 +523,6 @@ METHOD(kernel_ipsec_t, add_policy, status_t,
policy_entry_t *policy, *found = NULL; policy_entry_t *policy, *found = NULL;
status_t status; status_t status;
if (type != POLICY_IPSEC)
{
return SUCCESS;
}
status = ipsec->policies->add_policy(ipsec->policies, src, dst, src_ts, status = ipsec->policies->add_policy(ipsec->policies, src, dst, src_ts,
dst_ts, direction, type, sa, mark, priority); dst_ts, direction, type, sa, mark, priority);
if (status != SUCCESS) if (status != SUCCESS)