Module pf_key

Expand description

Functions for managing RFC2367 keys

Structs§

Address: Address information for a security association.
Association: Basic information about a security association.
GetAssociationResponse: Response information returned from kernel from a key association request.
Header: A PF_KEY security association header.
Lifetime: Lifetime information for a security association.
StrAuth: String authentication information for this security association.
TcpMd5AddKeyRequest: A packet to add a TCP-MD5 security association.
TcpMd5DeleteKeyRequest: A packet to delete a TCP-MD5 security association.
TcpMd5GetKeyRequest: A packet to request info about a TCP-MD5 security association.
TcpMd5UpdateKeyRequest: A packet to update a TCP-MD5 security association.

Error: Errors that can be returned from PF_KEY operations.
Extension: The extension enumeration contains all PF_KEY extensions supported by this module.
MessageType: PF_KEY message types.
SaAuthType: PF_KEY security association authentication types.
SaEncryptType: PF_KEY security association encryption types.
SaExtType: PF_KEY security association extension types.
SaState: PF_KEY security association states.
SaType: PF_KEY security association types.

tcp_md5_key_add: Add a TCP-MD5 security association for the provided source and destination address with authstring as the key that is valid for valid_time after creation. If update is true, this is treated as an update to an existing association, otherwise a new association is created.
tcp_md5_key_get: Get info on a TCP-MD5 security association for the provided source and destination address with
tcp_md5_key_remove: Delete the TCP-MD5 security association for the provided source and destination.
tcp_md5_key_update: Update a TCP-MD5 security association for the provided source and destination. This function is primarily for updating the lifetime of the security association.