conf_set
conf_set(trans, section, line, val, 0, 0);
conf_set(tr, sect, "ENCRYPTION_ALGORITHM", mme, 0, 1);
conf_set(tr, sect, "KEY_LENGTH", CONF_DFLT_VAL_BLF_KEYLEN, 0,
conf_set(tr, sect, "KEY_LENGTH", "128,128:128", 0, 1);
conf_set(tr, sect, "KEY_LENGTH", "192,192:192", 0, 1);
conf_set(tr, sect, "KEY_LENGTH", "256,256:256", 0, 1);
conf_set(tr, sect, "KEY_LENGTH", CONF_DFLT_VAL_AES_KEYLEN, 0,
conf_set(tr, sect, "HASH_ALGORITHM", mmh, 0, 1);
conf_set(tr, sect, "AUTHENTICATION_METHOD", mma, 0, 1);
conf_set(tr, sect, "GROUP_DESCRIPTION", dhg, 0, 1);
conf_set(tr, sect, "Life", CONF_DFLT_TAG_LIFE_MAIN_MODE, 0, 1);
conf_set(tr, sect, "Protocols", tmp, 0, 1);
conf_set(tr, tmp, "PROTOCOL_ID", sect, 0, 1);
conf_set(tr, tmp, "Transforms", sect, 0, 1);
conf_set(tr, sect, "TRANSFORM_ID", qme, 0, 1);
conf_set(tr, sect, "TRANSFORM_ID", qm_ah_id, 0, 1);
conf_set(tr, sect, "KEY_LENGTH", CONF_DFLT_VAL_BLF_KEYLEN, 0,
conf_set(tr, sect, "KEY_LENGTH", "128,128:128", 0, 1);
conf_set(tr, sect, "KEY_LENGTH", "192,192:192", 0, 1);
conf_set(tr, sect, "KEY_LENGTH", "256,256:256", 0, 1);
conf_set(tr, sect, "KEY_LENGTH", CONF_DFLT_VAL_AES_KEYLEN, 0,
conf_set(tr, sect, "ENCAPSULATION_MODE", MODE(mode), 0, 1);
conf_set(tr, sect, "AUTHENTICATION_ALGORITHM", qmh, 0, 1);
conf_set(tr, sect, "GROUP_DESCRIPTION", dhg, 0, 1);
conf_set(tr, sect, "Life", CONF_DFLT_TAG_LIFE_QUICK_MODE, 0, 1);
conf_set(tr, "General", "Retransmits", CONF_DFLT_RETRANSMITS, 0, 1);
conf_set(tr, "General", "Exchange-max-time", CONF_DFLT_EXCH_MAX_TIME,
conf_set(tr, "General", "Use-Keynote", CONF_DFLT_USE_KEYNOTE, 0, 1);
conf_set(tr, "General", "Policy-file", CONF_DFLT_POLICY_FILE, 0, 1);
conf_set(tr, "General", "Pubkey-directory", CONF_DFLT_PUBKEY_DIR, 0,
conf_set(tr, "X509-certificates", "CA-directory",
conf_set(tr, "X509-certificates", "Cert-directory",
conf_set(tr, "X509-certificates", "Private-key",
conf_set(tr, "X509-certificates", "Private-key-directory",
conf_set(tr, "X509-certificates", "CRL-directory",
conf_set(tr, "KeyNote", "Credential-directory",
conf_set(tr, "General", "Delete-SAs", CONF_DFLT_DELETE_SAS, 0, 1);
conf_set(tr, CONF_DFLT_TAG_LIFE_MAIN_MODE, "LIFE_TYPE",
conf_set(tr, CONF_DFLT_TAG_LIFE_MAIN_MODE, "LIFE_DURATION",
conf_set(tr, CONF_DFLT_TAG_LIFE_QUICK_MODE, "LIFE_TYPE",
conf_set(tr, CONF_DFLT_TAG_LIFE_QUICK_MODE, "LIFE_DURATION",
conf_set(tr, CONF_DFLT_TAG_PHASE1_CONFIG, "EXCHANGE_TYPE",
conf_set(tr, CONF_DFLT_TAG_PHASE1_CONFIG, "Transforms",
conf_set(tr, "Phase 1", "Default", "Default-phase-1", 0, 1);
conf_set(tr, "Default-phase-1", "Phase", "1", 0, 1);
conf_set(tr, "Default-phase-1", "Configuration",
conf_set(tr, "Default-phase-1", "ID", dflt, 0, 1);
extern int conf_set(int, char *, char *, char *, int, int);
conf_set(af, section, "Refcount", conn, 1, 0);
conf_set(af, section, "Refcount", conn, 1, 0);
if (conf_set(af, srcid, "ID-type",
conf_set(af, srcid, "Refcount", "1", 1, 0) ||
conf_set(af, srcid, "Address",
if (conf_set(af, srcid, "ID-type", prefstring,
conf_set(af, srcid, "Refcount", "1", 1, 0) ||
conf_set(af, srcid, "Name",
if (conf_set(af, dstid, "ID-type",
conf_set(af, dstid, "Refcount", "1", 1, 0) ||
conf_set(af, dstid, "Address",
if (conf_set(af, dstid, "ID-type", prefstring,
conf_set(af, dstid, "Refcount", "1", 1, 0) ||
conf_set(af, dstid, "Name",
if (conf_set(af, conn, "Phase", "2", 0, 0) ||
conf_set(af, conn, "Flags", "__ondemand", 0, 0) ||
conf_set(af, conn, "Refcount", "2", 0, 0) ||
conf_set(af, conn, "ISAKMP-peer", peer, 0, 0)) {
if (conf_set(af, conn, "Acquire-ID", lname, 0, 0)) {
if (conf_set(af, conn, "Local-ID", lname, 0, 0)) {
if (conf_set(af, lname, "Refcount", "1", 0, 0)) {
if (conf_set(af, lname, "ID-type", sidtype, 0, 0) ||
conf_set(af, lname, "Address", ssflow, 0, 0)) {
if (conf_set(af, lname, "ID-type", sidtype, 0, 0) ||
conf_set(af, lname, "Network", ssflow, 0, 0) ||
conf_set(af, lname, "Netmask", ssmask, 0, 0)) {
if (conf_set(af, lname, "Protocol", tmbuf, 0, 0)) {
if (conf_set(af, lname, "Port", tmbuf, 0, 0)) {
if (conf_set(af, conn, "Remote-ID", dname, 0, 0)) {
if (conf_set(af, dname, "Refcount", "1", 0, 0)) {
if (conf_set(af, dname, "ID-type", didtype, 0, 0) ||
conf_set(af, dname, "Address", sdflow, 0, 0)) {
if (conf_set(af, dname, "ID-type", didtype, 0, 0) ||
conf_set(af, dname, "Network", sdflow, 0, 0) ||
conf_set(af, dname, "Netmask", sdmask, 0, 0)) {
if (conf_set(af, dname, "Protocol", tmbuf, 0, 0)) {
if (conf_set(af, dname, "Port", tmbuf, 0, 0)) {
if (conf_set(af, conn, "Configuration", configname, 0, 0)) {
if (conf_set(af, configname, "Exchange_type", "Quick_mode",
conf_set(af, peer, "Refcount", "1", 0, 0) ||
conf_set(af, configname, "DOI", "IPSEC", 0, 0)) {
if (conf_set(af, configname, "Suites",
if (conf_set(af, configname, "Suites",
if (conf_set(af, peer, "Phase", "1", 0, 0) ||
conf_set(af, peer, "Refcount", "1", 0, 0) ||
conf_set(af, peer, "Address", dstbuf, 0, 0)) {
if (srcaddr && conf_set(af, peer, "Local-address", srcbuf, 0,
if (conf_set(af, peer, "Configuration", confname, 0, 0)) {
if (conf_set(af, confname, "Transforms", xform ? xform :
if (conf_set(af, confname, "Exchange_Type", "ID_PROT",
conf_set(af, confname, "DOI", "IPSEC", 0, 0) ||
conf_set(af, confname, "Refcount", "1", 0, 0)) {
if (srcid && conf_set(af, peer, "ID", srcid, 0, 0)) {
if (dstid && conf_set(af, peer, "Remote-ID", dstid, 0, 0)) {
conf_set(trans, section, tag, value, items == 4 ? 1 : 0, 0);
conf_set(trans, section, tag, value, 1, 0);
conf_set(trans, section, tag, nv, 1, 0);
conf_set(trans, section, tag, nv, 1, 0);