diff options
| author | Niklas Hallqvist <niklas@cvs.openbsd.org> | 1999-02-26 03:44:05 +0000 |
|---|---|---|
| committer | Niklas Hallqvist <niklas@cvs.openbsd.org> | 1999-02-26 03:44:05 +0000 |
| commit | f5b9be5d1e51cdd1bf89d3ae5c5639246e5425db (patch) | |
| tree | 80610fbd1c35aed7aa11c19a590d1e41f9378c67 /sbin | |
| parent | 154fe199b1767a4ec0e7e9d39092fd1e4e40d457 (diff) | |
Merge from the Ericsson repository
| revision 1.32
| date: 1999/02/25 09:30:26; author: niklas; state: Exp; lines: +4 -1
| Replay protection window configurable
| ----------------------------
| revision 1.31
| date: 1999/02/14 00:21:12; author: niklas; state: Exp; lines: +2 -1
| Find relevant SAs out of IPsec expiration info. Do not automatically rekey.
| ----------------------------
| revision 1.30
| date: 1999/01/31 01:17:01; author: niklas; state: Exp; lines: +4 -1
| splitup ipsec_build_id into more useful API
| ----------------------------
Diffstat (limited to 'sbin')
| -rw-r--r-- | sbin/isakmpd/ipsec.h | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/sbin/isakmpd/ipsec.h b/sbin/isakmpd/ipsec.h index a7a9a89c0c6..d5a1ec4d8f8 100644 --- a/sbin/isakmpd/ipsec.h +++ b/sbin/isakmpd/ipsec.h @@ -1,5 +1,5 @@ -/* $OpenBSD: ipsec.h,v 1.4 1998/12/21 01:02:25 niklas Exp $ */ -/* $EOM: ipsec.h,v 1.29 1998/11/26 09:15:45 niklas Exp $ */ +/* $OpenBSD: ipsec.h,v 1.5 1999/02/26 03:44:04 niklas Exp $ */ +/* $EOM: ipsec.h,v 1.32 1999/02/25 09:30:26 niklas Exp $ */ /* * Copyright (c) 1998 Niklas Hallqvist. All rights reserved. @@ -37,6 +37,8 @@ #ifndef _IPSEC_H_ #define _IPSEC_H_ +#include <netinet/in.h> + #include "ipsec_doi.h" struct group; @@ -116,6 +118,9 @@ struct ipsec_proto { u_int16_t keylen; u_int16_t keyrounds; + /* This is not negotiated, but rather configured. */ + int32_t replay_window; + /* KEYMAT */ u_int8_t *keymat[2]; }; @@ -128,10 +133,12 @@ extern void ipsec_decode_transform (struct message *, struct sa *, extern int ipsec_esp_authkeylength (struct proto *); extern int ipsec_esp_enckeylength (struct proto *); extern int ipsec_gen_g_x (struct message *); +extern int ipsec_get_id (char *, int *, struct in_addr *, struct in_addr *); extern void ipsec_init (void); extern int ipsec_is_attribute_incompatible (u_int16_t, u_int8_t *, u_int16_t, void *); extern int ipsec_keymat_length (struct proto *); extern int ipsec_save_g_x (struct message *); +extern struct sa *ipsec_sa_lookup (in_addr_t, u_int32_t, u_int8_t); #endif /* _IPSEC_H_ */ |