Install bypass policies after creating XFRM netlink socket, loading xfrm_user module
This commit is contained in:
parent
8a650a2bc8
commit
67c3875c02
|
@ -1989,12 +1989,6 @@ kernel_netlink_ipsec_t *kernel_netlink_ipsec_create()
|
|||
close(fd);
|
||||
}
|
||||
|
||||
/* add bypass policies on the sockets used by charon */
|
||||
if (!add_bypass_policies())
|
||||
{
|
||||
charon->kill(charon, "unable to add bypass policies on sockets");
|
||||
}
|
||||
|
||||
this->socket_xfrm = netlink_socket_create(NETLINK_XFRM);
|
||||
|
||||
memset(&addr, 0, sizeof(addr));
|
||||
|
@ -2013,6 +2007,12 @@ kernel_netlink_ipsec_t *kernel_netlink_ipsec_create()
|
|||
charon->kill(charon, "unable to bind XFRM event socket");
|
||||
}
|
||||
|
||||
/* add bypass policies on the sockets used by charon */
|
||||
if (!add_bypass_policies())
|
||||
{
|
||||
charon->kill(charon, "unable to add bypass policies on sockets");
|
||||
}
|
||||
|
||||
this->job = callback_job_create((callback_job_cb_t)receive_events,
|
||||
this, NULL, NULL);
|
||||
charon->processor->queue_job(charon->processor, (job_t*)this->job);
|
||||
|
|
Loading…
Reference in New Issue