Fixed update_sa in kernel-netlink plugin if marks are used

author: Tobias Brunner <tobias@strongswan.org> 2012-10-11 19:08:47 +0200
committer: Tobias Brunner <tobias@strongswan.org> 2012-10-11 19:08:47 +0200
commit: 2925aa725e2a5a67c36eeeb5915b560152ce3b1c (patch)
tree: 3dd7d6a5eddff479b09ae831a55b4178c49b7895 /src
parent: 418dcf3aaedd4a202690898e118ccd612fedee5d (diff)
download: strongswan-2925aa725e2a5a67c36eeeb5915b560152ce3b1c.tar.bz2
strongswan-2925aa725e2a5a67c36eeeb5915b560152ce3b1c.tar.xz
1 files changed, 18 insertions, 0 deletions
diff --git a/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c b/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
index 4f5b6600d..9355793b5 100644
--- a/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
+++ b/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
@@ -1834,6 +1834,24 @@ METHOD(kernel_ipsec_t, update_sa, status_t,
 	sa_id->proto = protocol;
 	sa_id->family = dst->get_family(dst);
 
+	if (mark.value)
+	{
+		struct xfrm_mark *mrk;
+		struct rtattr *rthdr = XFRM_RTA(hdr, struct xfrm_usersa_id);
+
+		rthdr->rta_type = XFRMA_MARK;
+		rthdr->rta_len = RTA_LENGTH(sizeof(struct xfrm_mark));
+		hdr->nlmsg_len += RTA_ALIGN(rthdr->rta_len);
+		if (hdr->nlmsg_len > sizeof(request))
+		{
+			return FAILED;
+		}
+
+		mrk = (struct xfrm_mark*)RTA_DATA(rthdr);
+		mrk->v = mark.value;
+		mrk->m = mark.mask;
+	}
+
 	if (this->socket_xfrm->send(this->socket_xfrm, hdr, &out, &len) == SUCCESS)
 	{
 		hdr = out;
author	Tobias Brunner <tobias@strongswan.org>	2012-10-11 19:08:47 +0200
committer	Tobias Brunner <tobias@strongswan.org>	2012-10-11 19:08:47 +0200
commit	2925aa725e2a5a67c36eeeb5915b560152ce3b1c (patch)
tree	3dd7d6a5eddff479b09ae831a55b4178c49b7895 /src
parent	418dcf3aaedd4a202690898e118ccd612fedee5d (diff)
download	strongswan-2925aa725e2a5a67c36eeeb5915b560152ce3b1c.tar.bz2 strongswan-2925aa725e2a5a67c36eeeb5915b560152ce3b1c.tar.xz