diff options
author | pjd <pjd@FreeBSD.org> | 2006-04-10 15:04:36 +0000 |
---|---|---|
committer | pjd <pjd@FreeBSD.org> | 2006-04-10 15:04:36 +0000 |
commit | 98fc9938afbd40dd139657197f8c385fd792ad71 (patch) | |
tree | 90fcabf580a6c3dc6c206a2d8fb27221ee66d0c9 /sys/netipsec/ipsec.c | |
parent | 7fd1474b9c2e989b87a761b3e8d1bee795283543 (diff) | |
download | FreeBSD-src-98fc9938afbd40dd139657197f8c385fd792ad71.zip FreeBSD-src-98fc9938afbd40dd139657197f8c385fd792ad71.tar.gz |
Hide net.inet.ipsec.test_{replay,integrity} sysctls under #ifdef REGRESSION.
Requested by: sam, rwatson
Diffstat (limited to 'sys/netipsec/ipsec.c')
-rw-r--r-- | sys/netipsec/ipsec.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/sys/netipsec/ipsec.c b/sys/netipsec/ipsec.c index 76bd99e..4d1376f 100644 --- a/sys/netipsec/ipsec.c +++ b/sys/netipsec/ipsec.c @@ -148,6 +148,7 @@ SYSCTL_INT(_net_inet_ipsec, OID_AUTO, SYSCTL_STRUCT(_net_inet_ipsec, OID_AUTO, ipsecstats, CTLFLAG_RD, &newipsecstat, newipsecstat, ""); +#ifdef REGRESSION /* * When set to 1, IPsec will send packets with the same sequence number. * This allows to verify if the other side has proper replay attacks detection. @@ -162,6 +163,7 @@ SYSCTL_INT(_net_inet_ipsec, OID_AUTO, test_replay, CTLFLAG_RW, &ipsec_replay, 0, int ipsec_integrity = 0; SYSCTL_INT(_net_inet_ipsec, OID_AUTO, test_integrity, CTLFLAG_RW, &ipsec_integrity, 0, "Emulate man-in-the-middle attack"); +#endif #ifdef INET6 int ip6_esp_trans_deflev = IPSEC_LEVEL_USE; |