summaryrefslogtreecommitdiff
path: root/sys/net/pfkeyv2.c
diff options
context:
space:
mode:
authorReyk Floeter <reyk@cvs.openbsd.org>2018-05-16 13:19:01 +0000
committerReyk Floeter <reyk@cvs.openbsd.org>2018-05-16 13:19:01 +0000
commite6f44d8e101ac4bdf3fda46fe8d102d2af159e41 (patch)
treee28472b2b08d49a57120111a8d966a1104ac0778 /sys/net/pfkeyv2.c
parentf59a613492f2bc125730772913f7445810009a4d (diff)
Fix kernel builds without IPSEC.
OK mikeb@
Diffstat (limited to 'sys/net/pfkeyv2.c')
-rw-r--r--sys/net/pfkeyv2.c5
1 files changed, 3 insertions, 2 deletions
diff --git a/sys/net/pfkeyv2.c b/sys/net/pfkeyv2.c
index b5f09bba123..7abd3070e21 100644
--- a/sys/net/pfkeyv2.c
+++ b/sys/net/pfkeyv2.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: pfkeyv2.c,v 1.178 2018/05/14 07:33:58 mpi Exp $ */
+/* $OpenBSD: pfkeyv2.c,v 1.179 2018/05/16 13:19:00 reyk Exp $ */
/*
* @(#)COPYRIGHT 1.1 (NRL) 17 January 1995
@@ -2013,7 +2013,7 @@ pfkeyv2_acquire(struct ipsec_policy *ipo, union sockaddr_union *gw,
/* XXX Should actually ask the crypto layer what's supported */
for (j = 0; j < sa_prop->sadb_prop_num; j++) {
sadb_comb->sadb_comb_flags = 0;
-
+#ifdef IPSEC
if (ipsec_require_pfs)
sadb_comb->sadb_comb_flags |= SADB_SAFLAGS_PFS;
@@ -2104,6 +2104,7 @@ pfkeyv2_acquire(struct ipsec_policy *ipo, union sockaddr_union *gw,
sadb_comb->sadb_comb_soft_usetime = ipsec_soft_first_use;
sadb_comb->sadb_comb_hard_usetime = ipsec_exp_first_use;
+#endif
sadb_comb++;
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 10:58:52 +0000