hipl-core team mailing list archive
-
hipl-core team
-
Mailing list archive
-
Message #00159
[Branch ~rene-hummen/hipl/ipsec_esp] Rev 4926: purge default kernel-space IPsec security policy for user-space IPsec
------------------------------------------------------------
revno: 4926
committer: Rene Hummen <rene.hummen@xxxxxxxxxxxxxxxxx>
branch nick: ipsec_esp
timestamp: Wed 2010-09-08 16:46:11 +0200
message:
purge default kernel-space IPsec security policy for user-space IPsec
modified:
modules/user_ipsec/hipd/user_ipsec.c
--
lp:~rene-hummen/hipl/ipsec_esp
https://code.launchpad.net/~rene-hummen/hipl/ipsec_esp
Your team HIPL core team is subscribed to branch lp:~rene-hummen/hipl/ipsec_esp.
To unsubscribe from this branch go to https://code.launchpad.net/~rene-hummen/hipl/ipsec_esp/+edit-subscription
=== modified file 'modules/user_ipsec/hipd/user_ipsec.c'
--- modules/user_ipsec/hipd/user_ipsec.c 2010-09-08 14:44:25 +0000
+++ modules/user_ipsec/hipd/user_ipsec.c 2010-09-08 14:46:11 +0000
@@ -38,6 +38,7 @@
#include "lib/core/ife.h"
#include "lib/core/icomm.h"
#include "lib/core/state.h"
+#include "lib/tool/xfrmapi.h"
#include "user_ipsec_sadb_api.h"
#include "user_ipsec_hipd_msg.h"
@@ -93,6 +94,9 @@
HIP_IFEL(hip_register_handle_function(HIP_R2, HIP_STATE_I2_SENT, &hip_setup_user_ipsec_sa_r2, 30500),
-1, "Error when registering userspace IPsec handle functions");
+ // remove default IPsec hooks from kernel-space for HIP namespace
+ hip_delete_default_prefix_sp_pair();
+
out_err:
return err;
}
