libipsec: Don't attempt deletion of any non-IPsec policies

An example are the fallback drop policies installed when updating SAs. We ignore such policies in add_policy() so there is no point in attempting to remove them. Since they use different priorities than regular policies this did not result in policies getting deleted unintentionally but there was an irritating log message on level 2 that indicated otherwise.
author: Tobias Brunner <tobias@strongswan.org> 2016-02-04 10:14:22 +0100
committer: Tobias Brunner <tobias@strongswan.org> 2016-02-04 10:30:56 +0100
commit: e1e88d5adde099566fee98338026e815dd1e9044 (patch)
tree: 7b5f05e584931fac5efda8340933cc9f1500397d /src
parent: ac134b470a89b94082a132c0c49844b8c476609b (diff)
download: strongswan-e1e88d5adde099566fee98338026e815dd1e9044.tar.bz2
strongswan-e1e88d5adde099566fee98338026e815dd1e9044.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/libipsec/ipsec_policy_mgr.c b/src/libipsec/ipsec_policy_mgr.c
index e2eaba014..1baa894f8 100644
--- a/src/libipsec/ipsec_policy_mgr.c
+++ b/src/libipsec/ipsec_policy_mgr.c
@@ -183,7 +183,7 @@ METHOD(ipsec_policy_mgr_t, del_policy, status_t,
 	ipsec_policy_entry_t *current, *found = NULL;
 	u_int32_t priority;
 
-	if (direction == POLICY_FWD)
+	if (type != POLICY_IPSEC || direction == POLICY_FWD)
 	{	/* we ignore these policies as we currently have no use for them */
 		return SUCCESS;
 	}
author	Tobias Brunner <tobias@strongswan.org>	2016-02-04 10:14:22 +0100
committer	Tobias Brunner <tobias@strongswan.org>	2016-02-04 10:30:56 +0100
commit	e1e88d5adde099566fee98338026e815dd1e9044 (patch)
tree	7b5f05e584931fac5efda8340933cc9f1500397d /src
parent	ac134b470a89b94082a132c0c49844b8c476609b (diff)
download	strongswan-e1e88d5adde099566fee98338026e815dd1e9044.tar.bz2 strongswan-e1e88d5adde099566fee98338026e815dd1e9044.tar.xz