[IPSEC]: Add SPD priority for PF_KEY interface.

987793dc · Brian Buesker · David S. Miller · 297c5dee · 987793dc · 987793dc
Commit 987793dc authored Apr 18, 2004 by Brian Buesker Committed by David S. Miller Apr 18, 2004
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 1 deletion

include/linux/pfkeyv2.h include/linux/pfkeyv2.h +1 -1

net/key/af_key.c net/key/af_key.c +2 -0

No files found.
--- a/include/linux/pfkeyv2.h
+++ b/include/linux/pfkeyv2.h
@@ -181,7 +181,7 @@ struct sadb_x_policy {
 	uint8_t		sadb_x_policy_dir;
 	uint8_t		sadb_x_policy_reserved;
 	uint32_t	sadb_x_policy_id;
-	uint32_t	sadb_x_policy_reserved2;
+	uint32_t	sadb_x_policy_priority;
 } __attribute__((packed));
 /* sizeof(struct sadb_x_policy) == 16 */

--- a/net/key/af_key.c
+++ b/net/key/af_key.c
@@ -1780,6 +1780,7 @@ static void pfkey_xfrm_policy2msg(struct sk_buff *skb, struct xfrm_policy *xp, i
 	}
 	pol->sadb_x_policy_dir = dir+1;
 	pol->sadb_x_policy_id = xp->index;
+	pol->sadb_x_policy_priority = xp->priority;
 	for (i=0; i<xp->xfrm_nr; i++) {
 		struct sadb_x_ipsecrequest *rq;
@@ -1872,6 +1873,7 @@ static int pfkey_spdadd(struct sock *sk, struct sk_buff *skb, struct sadb_msg *h
 	xp->action = (pol->sadb_x_policy_type == IPSEC_POLICY_DISCARD ?
 		      XFRM_POLICY_BLOCK : XFRM_POLICY_ALLOW);
+	xp->priority = pol->sadb_x_policy_priority;
 	sa = ext_hdrs[SADB_EXT_ADDRESS_SRC-1], 
 	xp->family = pfkey_sadb_addr2xfrm_addr(sa, &xp->selector.saddr);