ipsec_var.h revision 1.2.8.1
1 1.2.8.1 yamt /* $NetBSD: ipsec_var.h,v 1.2.8.1 2005/03/19 08:36:41 yamt Exp $ */ 2 1.1 jonathan /* $FreeBSD: src/sys/netipsec/ipsec.h,v 1.2.4.2 2004/02/14 22:23:23 bms Exp $ */ 3 1.1 jonathan 4 1.1 jonathan /*- 5 1.1 jonathan * Copyright (c) 2002, 2003 Sam Leffler, Errno Consulting 6 1.1 jonathan * All rights reserved. 7 1.1 jonathan * 8 1.1 jonathan * Redistribution and use in source and binary forms, with or without 9 1.1 jonathan * modification, are permitted provided that the following conditions 10 1.1 jonathan * are met: 11 1.1 jonathan * 1. Redistributions of source code must retain the above copyright 12 1.1 jonathan * notice, this list of conditions and the following disclaimer. 13 1.1 jonathan * 2. Redistributions in binary form must reproduce the above copyright 14 1.1 jonathan * notice, this list of conditions and the following disclaimer in the 15 1.1 jonathan * documentation and/or other materials provided with the distribution. 16 1.1 jonathan * 17 1.1 jonathan * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 18 1.1 jonathan * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 19 1.1 jonathan * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 20 1.1 jonathan * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 21 1.1 jonathan * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 22 1.1 jonathan * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 23 1.1 jonathan * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 24 1.1 jonathan * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 25 1.1 jonathan * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 26 1.1 jonathan * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 27 1.1 jonathan * SUCH DAMAGE. 28 1.1 jonathan * 29 1.1 jonathan * $FreeBSD: src/tools/tools/crypto/ipsecstats.c,v 1.1.4.1 2003/06/03 00:13:13 sam Exp $ 30 1.1 jonathan */ 31 1.1 jonathan 32 1.1 jonathan #ifndef _NETIPSEC_IPSEC_VAR_H_ 33 1.1 jonathan #define _NETIPSEC_IPSEC_VAR_H_ 34 1.1 jonathan 35 1.1 jonathan /* statistics for ipsec processing */ 36 1.1 jonathan struct newipsecstat { 37 1.1 jonathan u_int64_t ips_in_polvio; /* input: sec policy violation */ 38 1.1 jonathan u_int64_t ips_out_polvio; /* output: sec policy violation */ 39 1.1 jonathan u_int64_t ips_out_nosa; /* output: SA unavailable */ 40 1.1 jonathan u_int64_t ips_out_nomem; /* output: no memory available */ 41 1.1 jonathan u_int64_t ips_out_noroute; /* output: no route available */ 42 1.1 jonathan u_int64_t ips_out_inval; /* output: generic error */ 43 1.1 jonathan u_int64_t ips_out_bundlesa; /* output: bundled SA processed */ 44 1.1 jonathan u_int64_t ips_mbcoalesced; /* mbufs coalesced during clone */ 45 1.1 jonathan u_int64_t ips_clcoalesced; /* clusters coalesced during clone */ 46 1.1 jonathan u_int64_t ips_clcopied; /* clusters copied during clone */ 47 1.1 jonathan u_int64_t ips_mbinserted; /* mbufs inserted during makespace */ 48 1.1 jonathan #ifdef __NetBSD__ 49 1.1 jonathan u_int64_t ips_spdcache_lookup; 50 1.1 jonathan u_int64_t ips_spdcache_miss; 51 1.1 jonathan #endif /* __NetBSD__ */ 52 1.1 jonathan 53 1.2.8.1 yamt /* 54 1.1 jonathan * Temporary statistics for performance analysis. 55 1.1 jonathan */ 56 1.1 jonathan /* See where ESP/AH/IPCOMP header land in mbuf on input */ 57 1.1 jonathan u_int64_t ips_input_front; 58 1.1 jonathan u_int64_t ips_input_middle; 59 1.1 jonathan u_int64_t ips_input_end; 60 1.1 jonathan 61 1.1 jonathan }; 62 1.1 jonathan 63 1.1 jonathan #ifdef _KERNEL 64 1.1 jonathan /* 65 1.1 jonathan * XXX JRS FIXME: later replace NetBSD sourcecode with an IPSECSTAT_POLVIO() macro. 66 1.1 jonathan * for now, map the old fields to the new fields. */ 67 1.1 jonathan #define ipsecstat newipsecstat 68 1.1 jonathan 69 1.1 jonathan #define in_polvio ips_in_polvio 70 1.1 jonathan #define out_polvio ips_out_polvio 71 1.1 jonathan #define out_inval ips_out_inval 72 1.1 jonathan #endif /*_KERNEL*/ 73 1.1 jonathan 74 1.1 jonathan /* 75 1.1 jonathan * Definitions for IPsec & Key sysctl operations. 76 1.1 jonathan */ 77 1.1 jonathan /* 78 1.1 jonathan * Names for IPsec & Key sysctl objects 79 1.1 jonathan */ 80 1.2 atatat #define IPSECCTL_STATS 1 /* KAME compat stats */ 81 1.1 jonathan #define IPSECCTL_DEF_POLICY 2 82 1.1 jonathan #define IPSECCTL_DEF_ESP_TRANSLEV 3 /* int; ESP transport mode */ 83 1.1 jonathan #define IPSECCTL_DEF_ESP_NETLEV 4 /* int; ESP tunnel mode */ 84 1.1 jonathan #define IPSECCTL_DEF_AH_TRANSLEV 5 /* int; AH transport mode */ 85 1.1 jonathan #define IPSECCTL_DEF_AH_NETLEV 6 /* int; AH tunnel mode */ 86 1.1 jonathan #if 0 /* obsolete, do not reuse */ 87 1.1 jonathan #define IPSECCTL_INBOUND_CALL_IKE 7 88 1.1 jonathan #endif 89 1.1 jonathan #define IPSECCTL_AH_CLEARTOS 8 90 1.1 jonathan #define IPSECCTL_AH_OFFSETMASK 9 91 1.1 jonathan #define IPSECCTL_DFBIT 10 92 1.1 jonathan #define IPSECCTL_ECN 11 93 1.1 jonathan #define IPSECCTL_DEBUG 12 94 1.1 jonathan #define IPSECCTL_ESP_RANDPAD 13 95 1.1 jonathan #define IPSECCTL_MAXID 14 96 1.1 jonathan 97 1.1 jonathan #define IPSECCTL_NAMES { \ 98 1.1 jonathan { 0, 0 }, \ 99 1.1 jonathan { 0, 0 }, \ 100 1.1 jonathan { "def_policy", CTLTYPE_INT }, \ 101 1.1 jonathan { "esp_trans_deflev", CTLTYPE_INT }, \ 102 1.1 jonathan { "esp_net_deflev", CTLTYPE_INT }, \ 103 1.1 jonathan { "ah_trans_deflev", CTLTYPE_INT }, \ 104 1.1 jonathan { "ah_net_deflev", CTLTYPE_INT }, \ 105 1.1 jonathan { 0, 0 }, \ 106 1.1 jonathan { "ah_cleartos", CTLTYPE_INT }, \ 107 1.1 jonathan { "ah_offsetmask", CTLTYPE_INT }, \ 108 1.1 jonathan { "dfbit", CTLTYPE_INT }, \ 109 1.1 jonathan { "ecn", CTLTYPE_INT }, \ 110 1.1 jonathan { "debug", CTLTYPE_INT }, \ 111 1.1 jonathan { "esp_randpad", CTLTYPE_INT }, \ 112 1.1 jonathan } 113 1.1 jonathan 114 1.1 jonathan #define IPSEC6CTL_NAMES { \ 115 1.1 jonathan { 0, 0 }, \ 116 1.1 jonathan { 0, 0 }, \ 117 1.1 jonathan { "def_policy", CTLTYPE_INT }, \ 118 1.1 jonathan { "esp_trans_deflev", CTLTYPE_INT }, \ 119 1.1 jonathan { "esp_net_deflev", CTLTYPE_INT }, \ 120 1.1 jonathan { "ah_trans_deflev", CTLTYPE_INT }, \ 121 1.1 jonathan { "ah_net_deflev", CTLTYPE_INT }, \ 122 1.1 jonathan { 0, 0 }, \ 123 1.1 jonathan { 0, 0 }, \ 124 1.1 jonathan { 0, 0 }, \ 125 1.1 jonathan { 0, 0 }, \ 126 1.1 jonathan { "ecn", CTLTYPE_INT }, \ 127 1.1 jonathan { "debug", CTLTYPE_INT }, \ 128 1.1 jonathan { "esp_randpad", CTLTYPE_INT }, \ 129 1.1 jonathan } 130 1.1 jonathan 131 1.1 jonathan #endif /*_NETIPSEC_IPSEC_VAR_H_*/ 132
Indexes created Thu Oct 02 14:10:14 GMT 2025