[Openswan dev] [PATCH] Tearing down IPsec SAs doesn't work

Thomas Geulig geulig at nentec.de
Wed Apr 21 04:32:54 EDT 2010


I'm using openswan 2.6.25 with KLIPS, NETKEY is disabled.

Tearing down IPsec SAs doesn't work because in delete_ipsec_sa()
kern_interface is still set to AUTO_PICK.

If KLIPS and NETKEY_SUPPORT are not defined both in init_kernel(),
kern_interface never gets properly set in the following switch.
It remains set to AUTO_PICK regardless of the actual interface.

The attached patch fixes this.

Thomas

-------------- next part --------------
A non-text attachment was scrubbed...
Name: kern_interface.patch
Type: text/x-patch
Size: 1452 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/dev/attachments/20100421/b3f030fa/attachment.bin 


More information about the Dev mailing list