|
Defines | |
#define | IPSECDEV_NAME0 'i' |
#define | IPSECDEV_NAME1 's' |
Functions | |
void | ipsecdev_service (struct netif *netif) |
err_t | ipsecdev_input (struct pbuf *p, struct netif *inp) |
err_t | ipsecdev_output (struct netif *netif, struct pbuf *p, struct ip_addr *ipaddr) |
err_t | ipsecdev_netlink_output (struct netif *netif, struct pbuf *p) |
err_t | ipsecdev_init (struct netif *netif) |
void | ipsec_set_tunnel (char *src, char *dst) |
Variables | |
sad_entry | inbound_sad_config [] |
spd_entry | inbound_spd_config [] |
sad_entry | outbound_sad_config [] |
spd_entry | outbound_spd_config [] |
db_set_netif | db_sets [] |
db_set_netif * | databases |
netif | mapped_netif |
__u32 | tunnel_src_addr |
__u32 | tunnel_dst_addr |
|
1st letter of device name "is" Definition at line 79 of file ipsecdev.c. |
|
2nd letter of device name "is" Definition at line 80 of file ipsecdev.c. |
|
Setter function for tunnel source and destination address
Definition at line 481 of file ipsecdev.c. |
|
Initialize the ipsec network device This function must be called prior to any other operation with this device.
Definition at line 402 of file ipsecdev.c. |
|
This function is used to process incomming IP packets. This function is called by the physical network driver when a new packet has been received. To decide how to handle the packet, the Security Policy Database is called. ESP and AH packets are directly forwarded to ipsec_input() while other packets must pass the SPD lookup.
Definition at line 123 of file ipsecdev.c. |
|
This function is used to send a packet directly out of the network device. The packet is directly sent as-is the network device output function. It is used to serve ARP traffic.
Definition at line 378 of file ipsecdev.c. |
|
This function is used to send a packet out to the network device. IPsec processing for outbound traffic is done here before forwarding the IP packet to the physical network device. The SPD is queried in order to know how the packet must be handled.
Definition at line 243 of file ipsecdev.c. |
|
This is just used to provide an consisstend interface. This function has no functionality.
Definition at line 100 of file ipsecdev.c. |
|
reference to the SPD and SA configuration Definition at line 88 of file ipsecdev.c. |
|
This structure holds sets of databases used by one network interface. Each successful call of ipsec_spd_load_dbs() will return a pointer to an entry of this structure array. One entry holds pointers to a inbound and outbound SPD and SAD table. Definition at line 87 of file ipsecdev.c. |
|
inbound SAD configuration data Definition at line 82 of file ipsecdev.c. |
|
inbound SPD configuration data Definition at line 83 of file ipsecdev.c. |
|
handler of physical output device Definition at line 89 of file ipsecdev.c. |
|
outbound SAD configuration data Definition at line 84 of file ipsecdev.c. |
|
outbound SPD configuration data Definition at line 85 of file ipsecdev.c. |
|
tunnel destination address (external address the other IPsec tunnel endpoint) Definition at line 91 of file ipsecdev.c. |
|
tunnel source address (external address this IPsec device) Definition at line 90 of file ipsecdev.c. |