aboutsummaryrefslogtreecommitdiffstats
path: root/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
diff options
context:
space:
mode:
authorTobias Brunner <tobias@strongswan.org>2010-08-17 09:48:59 +0200
committerTobias Brunner <tobias@strongswan.org>2010-09-02 19:04:24 +0200
commitb8bf01ddee09faa020d65992d12b4be42be582bb (patch)
tree66eb0ee8dc08bc3f85a9e88ece7b4fbfd3a81aab /src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
parent76467e030ce660570888f75c3888856e903b4eab (diff)
downloadstrongswan-b8bf01ddee09faa020d65992d12b4be42be582bb.tar.bz2
strongswan-b8bf01ddee09faa020d65992d12b4be42be582bb.tar.xz
Do not install routes for pluto.
There are some incompatibilities with e.g. passthrough policies. Pluto installs required source routes via updown script.
Diffstat (limited to 'src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c')
-rw-r--r--src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c5
1 files changed, 5 insertions, 0 deletions
diff --git a/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c b/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
index 25878addf..5b869e78b 100644
--- a/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
+++ b/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
@@ -2171,6 +2171,11 @@ kernel_netlink_ipsec_t *kernel_netlink_ipsec_create()
hydra->daemon),
);
+ if (streq(hydra->daemon, "pluto"))
+ { /* no routes for pluto, they are installed via updown script */
+ this->install_routes = FALSE;
+ }
+
/* disable lifetimes for allocated SPIs in kernel */
fd = open("/proc/sys/net/core/xfrm_acq_expires", O_WRONLY);
if (fd)
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-20 09:11:26 +0000