From fbafaf2b7449d3aab1bed177b23e1b57399d15d3 Mon Sep 17 00:00:00 2001 From: "Angelos D. Keromytis" Date: Wed, 30 May 2001 11:14:43 +0000 Subject: Keep track of remote authentication material (like public key) as well. --- sys/netinet/ip_ipsp.h | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/sys/netinet/ip_ipsp.h b/sys/netinet/ip_ipsp.h index 00e1c6b6e51..4834cbcf41b 100644 --- a/sys/netinet/ip_ipsp.h +++ b/sys/netinet/ip_ipsp.h @@ -1,4 +1,4 @@ -/* $OpenBSD: ip_ipsp.h,v 1.94 2001/05/30 10:55:06 angelos Exp $ */ +/* $OpenBSD: ip_ipsp.h,v 1.95 2001/05/30 11:14:42 angelos Exp $ */ /* * The authors of this code are John Ioannidis (ji@tla.org), @@ -232,6 +232,13 @@ struct ipsec_policy #define IPSP_CRED_KEYNOTE 1 #define IPSP_CRED_X509 2 +/* Identity types */ +#define IPSP_IDENTITY_NONE 0 +#define IPSP_IDENTITY_PREFIX 1 +#define IPSP_IDENTITY_FQDN 2 +#define IPSP_IDENTITY_MBOX 3 +#define IPSP_IDENTITY_CONNECTION 4 + /* * For encapsulation routes are possible not only for the destination * address but also for the protocol, source and destination ports @@ -337,6 +344,7 @@ struct tdb /* tunnel descriptor block */ struct ipsec_ref *tdb_srcid; /* Source ID for this SA */ struct ipsec_ref *tdb_dstid; /* Destination ID for this SA */ struct ipsec_ref *tdb_local_auth; /* Local authentication material */ + struct ipsec_ref *tdb_remote_auth; /* Remote authentication material */ TAILQ_HEAD(tdb_inp_head_in, inpcb) tdb_inp_in; TAILQ_HEAD(tdb_inp_head_out, inpcb) tdb_inp_out; -- cgit v1.2.3