ipsec_var.h revision 1.5.88.1
1 1.5.88.1 pgoyette /* $NetBSD: ipsec_var.h,v 1.5.88.1 2018/04/22 07:20:28 pgoyette Exp $ */ 2 1.5.88.1 pgoyette /* $FreeBSD: ipsec.h,v 1.2.4.2 2004/02/14 22:23:23 bms Exp $ */ 3 1.1 jonathan 4 1.1 jonathan /*- 5 1.1 jonathan * Copyright (c) 2002, 2003 Sam Leffler, Errno Consulting 6 1.1 jonathan * All rights reserved. 7 1.1 jonathan * 8 1.1 jonathan * Redistribution and use in source and binary forms, with or without 9 1.1 jonathan * modification, are permitted provided that the following conditions 10 1.1 jonathan * are met: 11 1.1 jonathan * 1. Redistributions of source code must retain the above copyright 12 1.1 jonathan * notice, this list of conditions and the following disclaimer. 13 1.1 jonathan * 2. Redistributions in binary form must reproduce the above copyright 14 1.1 jonathan * notice, this list of conditions and the following disclaimer in the 15 1.1 jonathan * documentation and/or other materials provided with the distribution. 16 1.1 jonathan * 17 1.1 jonathan * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 18 1.1 jonathan * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 19 1.1 jonathan * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 20 1.1 jonathan * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 21 1.1 jonathan * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 22 1.1 jonathan * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 23 1.1 jonathan * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 24 1.1 jonathan * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 25 1.1 jonathan * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 26 1.1 jonathan * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 27 1.1 jonathan * SUCH DAMAGE. 28 1.1 jonathan * 29 1.1 jonathan * $FreeBSD: src/tools/tools/crypto/ipsecstats.c,v 1.1.4.1 2003/06/03 00:13:13 sam Exp $ 30 1.1 jonathan */ 31 1.1 jonathan 32 1.1 jonathan #ifndef _NETIPSEC_IPSEC_VAR_H_ 33 1.1 jonathan #define _NETIPSEC_IPSEC_VAR_H_ 34 1.1 jonathan 35 1.5 thorpej /* 36 1.5 thorpej * statistics for ipsec processing 37 1.5 thorpej * Each counter is an unsigned 64-bit value. 38 1.5 thorpej */ 39 1.5 thorpej #define IPSEC_STAT_IN_POLVIO 0 /* input: sec policy violation */ 40 1.5 thorpej #define IPSEC_STAT_OUT_POLVIO 1 /* output: sec policy violation */ 41 1.5 thorpej #define IPSEC_STAT_OUT_NOSA 2 /* output: SA unavailable */ 42 1.5 thorpej #define IPSEC_STAT_OUT_NOMEM 3 /* output: no memory available */ 43 1.5 thorpej #define IPSEC_STAT_OUT_NOROUTE 4 /* output: no route available */ 44 1.5 thorpej #define IPSEC_STAT_OUT_INVAL 5 /* output: generic error */ 45 1.5 thorpej #define IPSEC_STAT_OUT_BUNDLESA 6 /* output: bundled SA processed */ 46 1.5 thorpej #define IPSEC_STAT_MBCOALESCED 7 /* mbufs coalesced during clone */ 47 1.5 thorpej #define IPSEC_STAT_CLCOALESCED 8 /* clusters coalesced during clone */ 48 1.5 thorpej #define IPSEC_STAT_CLCOPIED 9 /* clusters copied during clone */ 49 1.5 thorpej #define IPSEC_STAT_MBINSERTED 10 /* mbufs inserted during makespace */ 50 1.5 thorpej #define IPSEC_STAT_SPDCACHELOOKUP 11 51 1.5 thorpej #define IPSEC_STAT_SPDCACHEMISS 12 52 1.5 thorpej #define IPSEC_STAT_INPUT_FRONT 13 53 1.5 thorpej #define IPSEC_STAT_INPUT_MIDDLE 14 54 1.5 thorpej #define IPSEC_STAT_INPUT_END 15 55 1.1 jonathan 56 1.5 thorpej #define IPSEC_NSTATS 16 57 1.1 jonathan 58 1.1 jonathan /* 59 1.1 jonathan * Definitions for IPsec & Key sysctl operations. 60 1.1 jonathan */ 61 1.1 jonathan /* 62 1.1 jonathan * Names for IPsec & Key sysctl objects 63 1.1 jonathan */ 64 1.2 atatat #define IPSECCTL_STATS 1 /* KAME compat stats */ 65 1.1 jonathan #define IPSECCTL_DEF_POLICY 2 66 1.1 jonathan #define IPSECCTL_DEF_ESP_TRANSLEV 3 /* int; ESP transport mode */ 67 1.1 jonathan #define IPSECCTL_DEF_ESP_NETLEV 4 /* int; ESP tunnel mode */ 68 1.1 jonathan #define IPSECCTL_DEF_AH_TRANSLEV 5 /* int; AH transport mode */ 69 1.1 jonathan #define IPSECCTL_DEF_AH_NETLEV 6 /* int; AH tunnel mode */ 70 1.1 jonathan #if 0 /* obsolete, do not reuse */ 71 1.1 jonathan #define IPSECCTL_INBOUND_CALL_IKE 7 72 1.1 jonathan #endif 73 1.1 jonathan #define IPSECCTL_AH_CLEARTOS 8 74 1.1 jonathan #define IPSECCTL_AH_OFFSETMASK 9 75 1.1 jonathan #define IPSECCTL_DFBIT 10 76 1.1 jonathan #define IPSECCTL_ECN 11 77 1.1 jonathan #define IPSECCTL_DEBUG 12 78 1.1 jonathan #define IPSECCTL_ESP_RANDPAD 13 79 1.1 jonathan #define IPSECCTL_MAXID 14 80 1.1 jonathan 81 1.1 jonathan #define IPSECCTL_NAMES { \ 82 1.1 jonathan { 0, 0 }, \ 83 1.1 jonathan { 0, 0 }, \ 84 1.1 jonathan { "def_policy", CTLTYPE_INT }, \ 85 1.1 jonathan { "esp_trans_deflev", CTLTYPE_INT }, \ 86 1.1 jonathan { "esp_net_deflev", CTLTYPE_INT }, \ 87 1.1 jonathan { "ah_trans_deflev", CTLTYPE_INT }, \ 88 1.1 jonathan { "ah_net_deflev", CTLTYPE_INT }, \ 89 1.1 jonathan { 0, 0 }, \ 90 1.1 jonathan { "ah_cleartos", CTLTYPE_INT }, \ 91 1.1 jonathan { "ah_offsetmask", CTLTYPE_INT }, \ 92 1.1 jonathan { "dfbit", CTLTYPE_INT }, \ 93 1.1 jonathan { "ecn", CTLTYPE_INT }, \ 94 1.1 jonathan { "debug", CTLTYPE_INT }, \ 95 1.1 jonathan { "esp_randpad", CTLTYPE_INT }, \ 96 1.1 jonathan } 97 1.1 jonathan 98 1.1 jonathan #define IPSEC6CTL_NAMES { \ 99 1.1 jonathan { 0, 0 }, \ 100 1.1 jonathan { 0, 0 }, \ 101 1.1 jonathan { "def_policy", CTLTYPE_INT }, \ 102 1.1 jonathan { "esp_trans_deflev", CTLTYPE_INT }, \ 103 1.1 jonathan { "esp_net_deflev", CTLTYPE_INT }, \ 104 1.1 jonathan { "ah_trans_deflev", CTLTYPE_INT }, \ 105 1.1 jonathan { "ah_net_deflev", CTLTYPE_INT }, \ 106 1.1 jonathan { 0, 0 }, \ 107 1.1 jonathan { 0, 0 }, \ 108 1.1 jonathan { 0, 0 }, \ 109 1.1 jonathan { 0, 0 }, \ 110 1.1 jonathan { "ecn", CTLTYPE_INT }, \ 111 1.1 jonathan { "debug", CTLTYPE_INT }, \ 112 1.1 jonathan { "esp_randpad", CTLTYPE_INT }, \ 113 1.1 jonathan } 114 1.1 jonathan 115 1.4 elad #endif /* !_NETIPSEC_IPSEC_VAR_H_ */ 116
Indexes created Thu Oct 02 14:10:14 GMT 2025