iked
sa_state(struct iked * a, struct iked_sa *b, int c)
ikev2_disable_rekeying(struct iked *a, struct iked_sa *b)
ikev2_init_ike_sa(struct iked *a, void *b)
timer_set(struct iked *env, struct iked_timer *tmr,
void (*cb)(struct iked *, void *), void *arg)
timer_add(struct iked *env, struct iked_timer *tmr, int timeout)
timer_del(struct iked *env, struct iked_timer *tmr)
ikev2_nat_detection(struct iked *env, struct iked_message *msg,
ca_setreq(struct iked *env, struct iked_sa *sh, struct iked_static_id *localid,
ikev2_send_informational(struct iked *env, struct iked_message *msg)
ikev2_msg_decrypt(struct iked *env, struct iked_sa *sa,
int eap_parse(struct iked *, const struct iked_sa *,
ikev2_msg_flushqueue(struct iked *env, struct iked_msgqueue *queue)
ikev2_msg_lookup(struct iked *env, struct iked_msgqueue *queue,
int ikev2_send_ike_e(struct iked *, struct iked_sa *, struct ibuf *,
void ikev2_ikesa_recv_delete(struct iked *, struct iked_sa *);
int ikev2_childsa_delete(struct iked *, struct iked_sa *,
void sa_state(struct iked *, struct iked_sa *, int);
void ikev2_disable_rekeying(struct iked *, struct iked_sa *);
void ikev2_init_ike_sa(struct iked *, void *);
void timer_set(struct iked *, struct iked_timer *,
void (*)(struct iked *, void *), void *);
void timer_add(struct iked *, struct iked_timer *, int);
void timer_del(struct iked *, struct iked_timer *);
ssize_t ikev2_nat_detection(struct iked *, struct iked_message *,
int ca_setreq(struct iked *, struct iked_sa *, struct iked_static_id *,
int ikev2_send_informational(struct iked *, struct iked_message *);
ikev2_msg_decrypt(struct iked *, struct iked_sa *, struct ibuf *,
eap_parse(struct iked *env, const struct iked_sa *sa, struct iked_message *msg,
ikev2_send_ike_e(struct iked *env, struct iked_sa *sa, struct ibuf *buf,
ikev2_ikesa_recv_delete(struct iked *env, struct iked_sa *sa)
ikev2_childsa_delete(struct iked *a, struct iked_sa *b, uint8_t c,
extern int ikev2_pld_payloads(struct iked *, struct iked_message *,
struct iked *env = iked_env;
ca_cert_local(struct iked *env, X509 *cert)
struct iked *env = iked_env;
ca_store_info(struct iked *env, struct imsg *imsg, const char *msg, X509_STORE *ctx)
struct iked *env = iked_env;
ca_validate_pubkey(struct iked *env, struct iked_static_id *id,
ca_reset(struct iked *env)
ca_validate_cert(struct iked *env, struct iked_static_id *id,
ca_decode_cert_bundle(struct iked *env, struct iked_sahdr *sh,
struct iked *env = iked_env;
struct iked *env = iked_env;
struct iked *env = iked_env;
ca_setcert(struct iked *env, struct iked_sahdr *sh, struct iked_id *id,
ca_setscert(struct iked *env, struct iked_sahdr *sh, uint8_t type, X509 *cert)
ca_setreq(struct iked *env, struct iked_sa *sa,
void ca_reset(struct iked *);
int ca_reload(struct iked *);
int ca_cert_local(struct iked *, X509 *);
int ca_getreq(struct iked *, struct imsg *);
ca_setauth(struct iked *env, struct iked_sa *sa,
int ca_getcert(struct iked *, struct imsg *);
int ca_getauth(struct iked *, struct imsg *);
ca_getcert(struct iked *env, struct imsg *imsg)
int ca_validate_pubkey(struct iked *, struct iked_static_id *,
int ca_validate_cert(struct iked *, struct iked_static_id *,
ca_getreq(struct iked *env, struct imsg *imsg)
void ca_store_info(struct iked *, struct imsg *, const char *, X509_STORE *);
ca_getauth(struct iked *env, struct imsg *imsg)
ca_reload(struct iked *env)
config_getocsp(struct iked *env, struct imsg *imsg)
config_setkeys(struct iked *env)
config_free_sa(struct iked *env, struct iked_sa *sa)
config_getkey(struct iked *env, struct imsg *imsg)
config_setradauth(struct iked *env)
config_getradauth(struct iked *env, struct imsg *imsg)
config_setradacct(struct iked *env)
config_getradacct(struct iked *env, struct imsg *imsg)
config_setradserver(struct iked *env, struct sockaddr *sa, socklen_t salen,
config_getradserver(struct iked *env, struct imsg *imsg)
config_setradcfgmap(struct iked *env, int cfg_type, uint32_t vendor_id,
config_getradcfgmap(struct iked *env, struct imsg *imsg)
config_setraddae(struct iked *env, struct sockaddr *sa, socklen_t salen)
config_getraddae(struct iked *env, struct imsg *imsg)
config_setradclient(struct iked *env, struct sockaddr *sa, socklen_t salen,
config_getradclient(struct iked *env, struct imsg *imsg)
config_new_policy(struct iked *env)
config_free_policy(struct iked *env, struct iked_policy *pol)
config_free_flows(struct iked *env, struct iked_flows *head)
config_free_childsas(struct iked *env, struct iked_childsas *head,
config_new_sa(struct iked *env, int initiator)
config_new_user(struct iked *env, struct iked_user *new)
config_setcoupled(struct iked *env, unsigned int couple)
config_getcoupled(struct iked *env, unsigned int type)
config_setmode(struct iked *env, unsigned int passive)
config_getmode(struct iked *env, unsigned int type)
config_setreset(struct iked *env, unsigned int mode, enum privsep_procid id)
config_getreset(struct iked *env, struct imsg *imsg)
config_doreset(struct iked *env, unsigned int mode)
config_setsocket(struct iked *env, struct sockaddr_storage *ss,
config_getsocket(struct iked *env, struct imsg *imsg,
config_enablesocket(struct iked *env)
config_setpfkey(struct iked *env)
config_getpfkey(struct iked *env, struct imsg *imsg)
config_setuser(struct iked *env, struct iked_user *usr, enum privsep_procid id)
config_getuser(struct iked *env, struct imsg *imsg)
config_setpolicy(struct iked *env, struct iked_policy *pol,
config_setflow(struct iked *env, struct iked_policy *pol,
config_getpolicy(struct iked *env, struct imsg *imsg)
config_getflow(struct iked *env, struct imsg *imsg)
config_setcompile(struct iked *env, enum privsep_procid id)
config_getcompile(struct iked *env)
config_setstatic(struct iked *env)
config_getstatic(struct iked *env, struct imsg *imsg)
config_setocsp(struct iked *env)
struct iked *env = cs->cs_env;
struct iked *env = iked_env;
eap_challenge_request(struct iked *env, struct iked_sa *sa,
eap_message_send(struct iked *env, struct iked_sa *sa, int eap_code, int eap_id)
eap_success(struct iked *env, struct iked_sa *sa, int eap_id)
eap_mschap_challenge(struct iked *env, struct iked_sa *sa, int eap_id,
eap_mschap_success(struct iked *env, struct iked_sa *sa, int eap_id)
eap_mschap(struct iked *env, const struct iked_sa *sa,
eap_parse(struct iked *env, const struct iked_sa *sa, struct iked_message *msg,
int eap_message_send(struct iked *, struct iked_sa *, int, int);
int eap_mschap(struct iked *, const struct iked_sa *,
eap_identity_request(struct iked *env, struct iked_sa *sa)
struct iked *env = ps->ps_env;
parent_configure(struct iked *env)
parent_reload(struct iked *env, int reset, const char *filename)
void parent_shutdown(struct iked *);
struct iked *env = iked_env;
struct iked *env = iked_env;
int parent_configure(struct iked *);
struct iked *env = iked_env;
struct iked *iked_env;
parent_shutdown(struct iked *env)
struct iked *env = NULL;
void config_free_flows(struct iked *, struct iked_flows *);
void config_free_childsas(struct iked *, struct iked_childsas *,
int config_setcoupled(struct iked *, unsigned int);
int config_getcoupled(struct iked *, unsigned int);
int config_setmode(struct iked *, unsigned int);
int config_getmode(struct iked *, unsigned int);
int config_setreset(struct iked *, unsigned int, enum privsep_procid);
int config_getreset(struct iked *, struct imsg *);
int config_doreset(struct iked *, unsigned int);
int config_setpolicy(struct iked *, struct iked_policy *,
int config_getpolicy(struct iked *, struct imsg *);
int config_setflow(struct iked *, struct iked_policy *,
int config_getflow(struct iked *, struct imsg *);
int config_setsocket(struct iked *, struct sockaddr_storage *, in_port_t,
int config_getsocket(struct iked *env, struct imsg *,
void config_enablesocket(struct iked *env);
int config_setpfkey(struct iked *);
int config_getpfkey(struct iked *, struct imsg *);
int config_setuser(struct iked *, struct iked_user *, enum privsep_procid);
int config_getuser(struct iked *, struct imsg *);
int config_setcompile(struct iked *, enum privsep_procid);
int config_getcompile(struct iked *);
int config_setocsp(struct iked *);
int config_getocsp(struct iked *, struct imsg *);
int config_setkeys(struct iked *);
int config_getkey(struct iked *, struct imsg *);
int config_setstatic(struct iked *);
int config_getstatic(struct iked *, struct imsg *);
int config_setradauth(struct iked *);
int config_getradauth(struct iked *, struct imsg *);
int config_setradacct(struct iked *);
int config_getradacct(struct iked *, struct imsg *);
int config_setradserver(struct iked *, struct sockaddr *, socklen_t,
int config_getradserver(struct iked *, struct imsg *);
int config_setradcfgmap(struct iked *, int, uint32_t, uint8_t);
int config_getradcfgmap(struct iked *, struct imsg *);
int config_setraddae(struct iked *, struct sockaddr *, socklen_t);
int config_getraddae(struct iked *, struct imsg *);
int config_setradclient(struct iked *, struct sockaddr *, socklen_t,
int config_getradclient(struct iked *, struct imsg *);
void policy_init(struct iked *);
int policy_lookup(struct iked *, struct iked_message *,
int policy_lookup_sa(struct iked *, struct iked_sa *);
policy_test(struct iked *, struct iked_policy *);
void policy_ref(struct iked *, struct iked_policy *);
void policy_unref(struct iked *, struct iked_policy *);
void sa_state(struct iked *, struct iked_sa *, int);
sa_new(struct iked *, uint64_t, uint64_t, unsigned int,
void sa_free(struct iked *, struct iked_sa *);
void sa_free_flows(struct iked *, struct iked_saflows *);
int sa_configure_iface(struct iked *, struct iked_sa *, int);
sa_lookup(struct iked *, uint64_t, uint64_t, unsigned int);
user_lookup(struct iked *, const char *);
sa_dstid_lookup(struct iked *, struct iked_sa *);
sa_dstid_insert(struct iked *, struct iked_sa *);
void sa_dstid_remove(struct iked *, struct iked_sa *);
struct iked *tmr_env;
void (*tmr_cb)(struct iked *, void *);
void vroute_init(struct iked *);
int vroute_setaddr(struct iked *, int, struct sockaddr *, int, unsigned int);
void vroute_cleanup(struct iked *);
int vroute_getaddr(struct iked *, struct imsg *);
int vroute_setdns(struct iked *, int, struct sockaddr *, unsigned int);
int vroute_getdns(struct iked *, struct imsg *);
int vroute_setaddroute(struct iked *, uint8_t, struct sockaddr *,
int vroute_setcloneroute(struct iked *, uint8_t, struct sockaddr *,
int vroute_setdelroute(struct iked *, uint8_t, struct sockaddr *,
int vroute_getroute(struct iked *, struct imsg *);
int vroute_getcloneroute(struct iked *, struct imsg *);
void ikev2_recv(struct iked *, struct iked_message *);
void ikev2_init_ike_sa(struct iked *, void *);
int ikev2_childsa_enable(struct iked *, struct iked_sa *);
int ikev2_childsa_delete(struct iked *, struct iked_sa *,
void ikev2_ikesa_recv_delete(struct iked *, struct iked_sa *);
void ikev2_ike_sa_timeout(struct iked *env, void *);
void ikev2_reset_alive_timer(struct iked *);
int ikev2_ike_sa_delete(struct iked *, struct iked_sa *);
ssize_t ikev2_nat_detection(struct iked *, struct iked_message *,
void ikev2_enable_natt(struct iked *, struct iked_sa *,
int ikev2_send_informational(struct iked *, struct iked_message *);
int ikev2_send_ike_e(struct iked *, struct iked_sa *, struct ibuf *,
int ikev2_child_sa_acquire(struct iked *, struct iked_flow *);
int ikev2_child_sa_drop(struct iked *, struct iked_spi *);
int ikev2_child_sa_rekey(struct iked *, struct iked_spi *);
void ikev2_disable_rekeying(struct iked *, struct iked_sa *);
ikev2_msg_init(struct iked *, struct iked_message *,
ikev2_msg_copy(struct iked *, struct iked_message *);
void ikev2_msg_cleanup(struct iked *, struct iked_message *);
ikev2_msg_id(struct iked *, struct iked_sa *);
*ikev2_msg_auth(struct iked *, struct iked_sa *, int);
int ikev2_msg_authsign(struct iked *, struct iked_sa *,
int ikev2_msg_authverify(struct iked *, struct iked_sa *,
int ikev2_msg_valid_ike_sa(struct iked *, struct ike_header *,
int ikev2_msg_send(struct iked *, struct iked_message *);
int ikev2_msg_send_encrypt(struct iked *, struct iked_sa *,
*ikev2_msg_encrypt(struct iked *, struct iked_sa *, struct ibuf *,
ikev2_msg_decrypt(struct iked *, struct iked_sa *,
int ikev2_msg_integr(struct iked *, struct iked_sa *, struct ibuf *);
ikev2_msg_getsocket(struct iked *, int, int);
int ikev2_msg_enqueue(struct iked *, struct iked_msgqueue *,
int ikev2_msg_retransmit_response(struct iked *, struct iked_sa *,
void ikev2_msg_prevail(struct iked *, struct iked_msgqueue *,
void ikev2_msg_dispose(struct iked *, struct iked_msgqueue *,
void ikev2_msg_flushqueue(struct iked *, struct iked_msgqueue *);
ikev2_msg_lookup(struct iked *, struct iked_msgqueue *,
int ikev2_pld_parse(struct iked *, struct ike_header *,
int ikev2_pld_parse_quick(struct iked *, struct ike_header *,
int eap_parse(struct iked *, const struct iked_sa *, struct iked_message*,
int eap_success(struct iked *, struct iked_sa *, int);
int eap_identity_request(struct iked *, struct iked_sa *);
int eap_mschap_challenge(struct iked *, struct iked_sa *, int, int,
int eap_mschap_success(struct iked *, struct iked_sa *, int);
int eap_challenge_request(struct iked *, struct iked_sa *, int);
int iked_radius_request(struct iked *, struct iked_sa *,
void iked_radius_request_free(struct iked *, struct iked_radserver_req *);
void iked_radius_acct_on(struct iked *);
void iked_radius_acct_off(struct iked *);
void iked_radius_acct_start(struct iked *, struct iked_sa *);
void iked_radius_acct_stop(struct iked *, struct iked_sa *);
int pfkey_couple(struct iked *, struct iked_sas *, int);
int pfkey_flow_add(struct iked *, struct iked_flow *);
int pfkey_flow_delete(struct iked *, struct iked_flow *);
int pfkey_sa_init(struct iked *, struct iked_childsa *, uint32_t *);
int pfkey_sa_add(struct iked *, struct iked_childsa *, struct iked_childsa *);
int pfkey_sa_update_addresses(struct iked *, struct iked_childsa *);
int pfkey_sa_delete(struct iked *, struct iked_childsa *);
int pfkey_sa_last_used(struct iked *, struct iked_childsa *, uint64_t *);
int pfkey_flush(struct iked *);
int pfkey_socket(struct iked *);
void pfkey_init(struct iked *, int fd);
int ca_setreq(struct iked *, struct iked_sa *, struct iked_static_id *,
int ca_setcert(struct iked *, struct iked_sahdr *, struct iked_id *,
int ca_setauth(struct iked *, struct iked_sa *,
void timer_set(struct iked *, struct iked_timer *,
void (*)(struct iked *, void *), void *);
void timer_add(struct iked *, struct iked_timer *, int);
void timer_del(struct iked *, struct iked_timer *);
int ocsp_connect(struct iked *, struct imsg *);
int ocsp_receive_fd(struct iked *, struct imsg *);
int ocsp_validate_cert(struct iked *, void *, size_t, struct iked_sahdr,
int parse_config(const char *, struct iked *);
struct iked *rs_env;
struct iked *rd_env;
struct iked *rc_env;
struct iked *ps_env;
struct iked *sock_env;
void parent_reload(struct iked *, int, const char *);
extern struct iked *iked_env;
config_new_policy(struct iked *);
void config_free_sa(struct iked *, struct iked_sa *);
config_new_sa(struct iked *, int);
config_new_user(struct iked *, struct iked_user *);
void config_free_policy(struct iked *, struct iked_policy *);
int ikev2_resp_ike_auth(struct iked *, struct iked_sa *);
int ikev2_send_auth_failed(struct iked *, struct iked_sa *);
int ikev2_send_error(struct iked *, struct iked_sa *,
int ikev2_send_init_error(struct iked *, struct iked_message *);
int ikev2_handle_certreq(struct iked*, struct iked_message *);
ssize_t ikev2_handle_delete(struct iked *, struct iked_message *,
int ikev2_send_create_child_sa(struct iked *, struct iked_sa *,
int ikev2_ikesa_enable(struct iked *, struct iked_sa *, struct iked_sa *);
void ikev2_ikesa_delete(struct iked *, struct iked_sa *, int);
ikev2_ike_auth(struct iked *env, struct iked_sa *sa)
int ikev2_init_create_child_sa(struct iked *, struct iked_message *);
int ikev2_resp_create_child_sa(struct iked *, struct iked_message *);
ikev2_init_recv(struct iked *env, struct iked_message *msg,
void ikev2_ike_sa_rekey(struct iked *, void *);
void ikev2_ike_sa_rekey_timeout(struct iked *, void *);
void ikev2_ike_sa_rekey_schedule(struct iked *, struct iked_sa *);
void ikev2_ike_sa_rekey_schedule_fast(struct iked *, struct iked_sa *);
void ikev2_ike_sa_alive(struct iked *, void *);
void ikev2_ike_sa_keepalive(struct iked *, void *);
int ikev2_sa_negotiate_common(struct iked *, struct iked_sa *,
int ikev2_sa_initiator(struct iked *, struct iked_sa *,
int ikev2_sa_responder(struct iked *, struct iked_sa *, struct iked_sa *,
ikev2_enable_natt(struct iked *env, struct iked_sa *sa,
ikev2_init_ike_sa(struct iked *env, void *arg)
int ikev2_sa_keys(struct iked *, struct iked_sa *, struct ibuf *);
ikev2_init_ike_sa_timeout(struct iked *env, void *arg)
ikev2_init_ike_sa_peer(struct iked *env, struct iked_policy *pol,
int ikev2_childsa_negotiate(struct iked *, struct iked_sa *,
int ikev2_childsa_delete_proposed(struct iked *, struct iked_sa *,
int ikev2_handle_notifies(struct iked *, struct iked_message *);
ssize_t ikev2_add_proposals(struct iked *, struct iked_sa *, struct ibuf *,
ssize_t ikev2_add_cp(struct iked *, struct iked_sa *, int, struct ibuf *);
ssize_t ikev2_init_add_cp(struct iked *, struct iked_sa *, struct ibuf *);
ssize_t ikev2_resp_add_cp(struct iked *, struct iked_sa *, struct ibuf *);
ikev2_init_auth(struct iked *env, struct iked_message *msg)
ikev2_init_ike_auth(struct iked *env, struct iked_sa *sa)
ssize_t ikev2_add_ipcompnotify(struct iked *, struct ibuf *,
ssize_t ikev2_add_error(struct iked *, struct ibuf *, struct iked_message *);
int ikev2_cp_setaddr(struct iked *, struct iked_sa *, sa_family_t);
int ikev2_cp_setaddr_pool(struct iked *, struct iked_sa *,
ikev2_enable_timer(struct iked *env, struct iked_sa *sa)
ikev2_reset_alive_timer(struct iked *env)
ikev2_disable_timer(struct iked *env, struct iked_sa *sa)
ssize_t ikev2_add_nat_detection(struct iked *, struct ibuf *,
ikev2_init_done(struct iked *env, struct iked_sa *sa)
ssize_t ikev2_add_transport_mode(struct iked *, struct ibuf *,
int ikev2_update_sa_addresses(struct iked *, struct iked_sa *);
int ikev2_resp_informational(struct iked *, struct iked_sa *,
void ikev2_ctl_reset_id(struct iked *, struct imsg *, unsigned int);
void ikev2_ctl_show_sa(struct iked *, struct imsg *);
void ikev2_ctl_show_stats(struct iked *, struct imsg *);
ikev2_add_ipcompnotify(struct iked *env, struct ibuf *e,
struct iked *env = iked_env;
ikev2_add_transport_mode(struct iked *env, struct ibuf *e,
ikev2_nat_detection(struct iked *env, struct iked_message *msg,
struct iked *env = iked_env;
ikev2_add_nat_detection(struct iked *env, struct ibuf *buf,
ikev2_add_cp(struct iked *env, struct iked_sa *sa, int type, struct ibuf *buf)
ikev2_init_add_cp(struct iked *env, struct iked_sa *sa, struct ibuf *buf)
ikev2_resp_add_cp(struct iked *env, struct iked_sa *sa, struct ibuf *buf)
ikev2_add_proposals(struct iked *env, struct iked_sa *sa, struct ibuf *buf,
ikev2_resp_informational(struct iked *env, struct iked_sa *sa,
ikev2_resp_recv(struct iked *env, struct iked_message *msg,
ikev2_handle_delete(struct iked *env, struct iked_message *msg,
ikev2_handle_notifies(struct iked *env, struct iked_message *msg)
struct iked *env = iked_env;
ikev2_resp_ike_sa_init(struct iked *env, struct iked_message *msg)
ikev2_send_auth_failed(struct iked *env, struct iked_sa *sa)
ikev2_add_error(struct iked *env, struct ibuf *buf, struct iked_message *msg)
ikev2_record_dstid(struct iked *env, struct iked_sa *sa)
ikev2_send_error(struct iked *env, struct iked_sa *sa,
ikev2_send_init_error(struct iked *env, struct iked_message *msg)
ikev2_handle_certreq(struct iked* env, struct iked_message *msg)
ikev2_resp_ike_eap_mschap(struct iked *env, struct iked_sa *sa,
ikev2_resp_ike_eap(struct iked *env, struct iked_sa *sa,
ikev2_resp_ike_auth(struct iked *env, struct iked_sa *sa)
ikev2_send_ike_e(struct iked *env, struct iked_sa *sa, struct ibuf *buf,
ikev2_send_create_child_sa(struct iked *env, struct iked_sa *sa,
ikev2_ike_sa_rekey(struct iked *env, void *arg)
ikev2_init_create_child_sa(struct iked *env, struct iked_message *msg)
ikev2_ikesa_enable(struct iked *env, struct iked_sa *sa, struct iked_sa *nsa)
ikev2_ikesa_delete(struct iked *env, struct iked_sa *sa, int initiator)
ikev2_ikesa_recv_delete(struct iked *env, struct iked_sa *sa)
ikev2_resp_create_child_sa(struct iked *env, struct iked_message *msg)
ikev2_ike_sa_timeout(struct iked *env, void *arg)
void ikev2_info(struct iked *, struct imsg *, int);
ikev2_ike_sa_rekey_timeout(struct iked *env, void *arg)
ikev2_ike_sa_rekey_schedule(struct iked *env, struct iked_sa *sa)
ikev2_ike_sa_rekey_schedule_fast(struct iked *env, struct iked_sa *sa)
ikev2_ike_sa_alive(struct iked *env, void *arg)
struct iked *env = iked_env;
ikev2_ike_sa_keepalive(struct iked *env, void *arg)
void ikev2_info_sa(struct iked *, struct imsg *, int, const char *,
ikev2_send_informational(struct iked *env, struct iked_message *msg)
ikev2_ike_sa_delete(struct iked *env, struct iked_sa *sa)
void ikev2_info_csa(struct iked *, struct imsg *, int, const char *,
ikev2_sa_negotiate_common(struct iked *env, struct iked_sa *sa,
ikev2_sa_initiator(struct iked *env, struct iked_sa *sa,
ikev2_ctl_reset_id(struct iked *env, struct imsg *imsg, unsigned int type)
ikev2_sa_responder(struct iked *env, struct iked_sa *sa, struct iked_sa *osa,
void ikev2_info_flow(struct iked *, struct imsg *, int, const char *,
ikev2_sa_keys(struct iked *env, struct iked_sa *sa, struct ibuf *key)
ikev2_ctl_show_sa(struct iked *env, struct imsg *imsg)
ikev2_ctl_show_stats(struct iked *env, struct imsg *imsg)
ikev2_getimsgdata(struct iked *env, struct imsg *imsg, struct iked_sahdr *sh,
ikev2_childsa_delete_proposed(struct iked *env, struct iked_sa *sa,
ikev2_childsa_negotiate(struct iked *env, struct iked_sa *sa,
ikev2_childsa_enable(struct iked *env, struct iked_sa *sa)
ikev2_recv(struct iked *env, struct iked_message *msg)
ikev2_childsa_delete(struct iked *env, struct iked_sa *sa, uint8_t saproto,
ikev2_child_sa_acquire(struct iked *env, struct iked_flow *acquire)
ikev2_disable_rekeying(struct iked *env, struct iked_sa *sa)
ikev2_child_sa_rekey(struct iked *env, struct iked_spi *rekey)
ikev2_child_sa_drop(struct iked *env, struct iked_spi *drop)
ikev2_getimsgdata(struct iked *, struct imsg *, struct iked_sahdr *,
ikev2_cp_setaddr(struct iked *env, struct iked_sa *sa, sa_family_t family)
ikev2_cp_setaddr_pool(struct iked *env, struct iked_sa *sa,
int ikev2_ike_auth_recv(struct iked *, struct iked_sa *,
ikev2_update_sa_addresses(struct iked *env, struct iked_sa *sa)
ikev2_info_sa(struct iked *env, struct imsg *imsg, int dolog, const char *msg,
ikev2_info_csa(struct iked *env, struct imsg *imsg, int dolog, const char *msg,
int ikev2_ike_auth(struct iked *, struct iked_sa *);
ikev2_info_flow(struct iked *env, struct imsg *imsg, int dolog, const char *msg,
ikev2_info(struct iked *env, struct imsg *imsg, int dolog)
int ikev2_auth_verify(struct iked *, struct iked_sa *);
void ikev2_init_recv(struct iked *, struct iked_message *,
void ikev2_init_ike_sa_timeout(struct iked *, void *);
int ikev2_init_ike_sa_peer(struct iked *, struct iked_policy *,
int ikev2_init_ike_auth(struct iked *, struct iked_sa *);
int ikev2_init_auth(struct iked *, struct iked_message *);
ikev2_auth_verify(struct iked *env, struct iked_sa *sa)
int ikev2_init_done(struct iked *, struct iked_sa *);
int ikev2_record_dstid(struct iked *, struct iked_sa *);
void ikev2_enable_timer(struct iked *, struct iked_sa *);
void ikev2_disable_timer(struct iked *, struct iked_sa *);
void ikev2_resp_recv(struct iked *, struct iked_message *,
ikev2_ike_auth_recv(struct iked *env, struct iked_sa *sa,
int ikev2_resp_ike_sa_init(struct iked *, struct iked_message *);
int ikev2_resp_ike_eap(struct iked *, struct iked_sa *,
int ikev2_resp_ike_eap_mschap(struct iked *, struct iked_sa *,
ikev2_msg_authverify(struct iked *env, struct iked_sa *sa,
ikev2_msg_authsign(struct iked *env, struct iked_sa *sa,
ikev1_recv(struct iked *env, struct iked_message *msg)
ikev2_msg_getsocket(struct iked *env, int af, int natt)
ikev2_msg_enqueue(struct iked *env, struct iked_msgqueue *queue,
ikev2_msg_prevail(struct iked *env, struct iked_msgqueue *queue,
ikev2_msg_dispose(struct iked *env, struct iked_msgqueue *queue,
ikev2_msg_flushqueue(struct iked *env, struct iked_msgqueue *queue)
ikev2_msg_lookup(struct iked *env, struct iked_msgqueue *queue,
ikev2_msg_retransmit_response(struct iked *env, struct iked_sa *sa,
ikev2_msg_response_timeout(struct iked *env, void *arg)
ikev2_msg_retransmit_timeout(struct iked *env, void *arg)
ikev2_msg_init(struct iked *env, struct iked_message *msg,
ikev2_msg_copy(struct iked *env, struct iked_message *msg)
ikev2_msg_cleanup(struct iked *env, struct iked_message *msg)
ikev2_msg_valid_ike_sa(struct iked *env, struct ike_header *oldhdr,
ikev2_msg_send(struct iked *env, struct iked_message *msg)
ikev2_msg_id(struct iked *env, struct iked_sa *sa)
ikev2_msg_encrypt(struct iked *env, struct iked_sa *sa, struct ibuf *src,
void ikev1_recv(struct iked *, struct iked_message *);
void ikev2_msg_response_timeout(struct iked *, void *);
void ikev2_msg_retransmit_timeout(struct iked *, void *);
ikev2_msg_integr(struct iked *env, struct iked_sa *sa, struct ibuf *src)
int ikev2_send_encrypted_fragments(struct iked *, struct iked_sa *,
ikev2_msg_decrypt(struct iked *env, struct iked_sa *sa,
struct iked *env = sock->sock_env;
ikev2_msg_send_encrypt(struct iked *env, struct iked_sa *sa, struct ibuf **ep,
ikev2_send_encrypted_fragments(struct iked *env, struct iked_sa *sa,
ikev2_msg_auth(struct iked *env, struct iked_sa *sa, int response)
int ikev2_pld_e(struct iked *, struct ikev2_payload *,
int ikev2_pld_ef(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_notify(struct iked *env, struct ikev2_payload *pld,
int ikev2_frags_reassemble(struct iked *env,
int ikev2_pld_cp(struct iked *, struct ikev2_payload *,
int ikev2_pld_eap(struct iked *, struct ikev2_payload *,
ikev2_pld_parse(struct iked *env, struct ike_header *hdr,
ikev2_pld_delete(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_tss(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_ts(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_ef(struct iked *env, struct ikev2_payload *pld,
ikev2_frags_reassemble(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_e(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_payloads(struct iked *env, struct iked_message *msg,
ikev2_pld_cp(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_eap(struct iked *env, struct ikev2_payload *pld,
ikev2_pld_parse_quick(struct iked *env, struct ike_header *hdr,
ikev2_pld_sa(struct iked *env, struct ikev2_payload *pld,
int ikev2_pld_payloads(struct iked *, struct iked_message *,
ikev2_pld_xform(struct iked *env, struct iked_message *msg,
int ikev2_pld_sa(struct iked *, struct ikev2_payload *,
int ikev2_pld_xform(struct iked *, struct iked_message *,
ikev2_pld_attr(struct iked *env, struct ikev2_transform *xfrm,
int ikev2_pld_attr(struct iked *, struct ikev2_transform *,
int ikev2_pld_ke(struct iked *, struct ikev2_payload *,
ikev2_pld_ke(struct iked *env, struct ikev2_payload *pld,
int ikev2_pld_id(struct iked *, struct ikev2_payload *,
int ikev2_pld_cert(struct iked *, struct ikev2_payload *,
ikev2_pld_id(struct iked *env, struct ikev2_payload *pld,
int ikev2_pld_certreq(struct iked *, struct ikev2_payload *,
int ikev2_pld_nonce(struct iked *, struct ikev2_payload *,
ikev2_pld_cert(struct iked *env, struct ikev2_payload *pld,
int ikev2_pld_notify(struct iked *, struct ikev2_payload *,
int ikev2_pld_delete(struct iked *, struct ikev2_payload *,
ikev2_pld_certreq(struct iked *env, struct ikev2_payload *pld,
int ikev2_pld_tss(struct iked *, struct ikev2_payload *,
int ikev2_pld_ts(struct iked *, struct ikev2_payload *,
ikev2_pld_auth(struct iked *env, struct ikev2_payload *pld,
int ikev2_pld_auth(struct iked *, struct ikev2_payload *,
ikev2_pld_nonce(struct iked *env, struct ikev2_payload *pld,
ocsp_connect_finish(struct iked *env, int fd, struct ocsp_connect *oc)
ocsp_validate_cert(struct iked *env, void *data, size_t len,
ocsp_receive_fd(struct iked *env, struct imsg *imsg)
struct iked *ocsp_env; /* back pointer to env */
struct iked *env = ocsp->ocsp_env;
struct iked *env = ocsp->ocsp_env;
int ocsp_connect_finish(struct iked *, int, struct ocsp_connect *);
ocsp_connect(struct iked *env, struct imsg *imsg)
parse_config(const char *filename, struct iked *x_env)
static struct iked *env = NULL;
pfkey_sa_last_used(struct iked *env, struct iked_childsa *sa, uint64_t *last_used)
pfkey_sa_check_exists(struct iked *env, struct iked_childsa *sa)
int pfkey_flow(struct iked *, uint8_t, uint8_t, struct iked_flow *);
pfkey_sa_sastats(struct iked *env, struct iked_childsa *sa,
int pfkey_sa(struct iked *, uint8_t, uint8_t, struct iked_childsa *);
pfkey_sa_getspi(struct iked *env, uint8_t satype, struct iked_childsa *sa,
int pfkey_sa_getspi(struct iked *, uint8_t, struct iked_childsa *, uint32_t *);
int pfkey_sagroup(struct iked *, uint8_t, uint8_t,
int pfkey_write(struct iked *, struct sadb_msg *, struct iovec *, int,
int pfkey_sa_lookup(struct iked *, struct iked_childsa *, uint64_t *,
int pfkey_sa_check_exists(struct iked *, struct iked_childsa *);
int pfkey_sa_sastats(struct iked *, struct iked_childsa *,
pfkey_sagroup(struct iked *env, uint8_t satype1, uint8_t action,
int pfkey_process(struct iked *, struct pfkey_message *);
pfkey_couple(struct iked *env, struct iked_sas *sas, int couple)
pfkey_write(struct iked *env, struct sadb_msg *smsg, struct iovec *iov, int iov_cnt,
pfkey_flow_add(struct iked *env, struct iked_flow *flow)
pfkey_flow_delete(struct iked *env, struct iked_flow *flow)
pfkey_sa_init(struct iked *env, struct iked_childsa *sa, uint32_t *spi)
pfkey_sa_add(struct iked *env, struct iked_childsa *sa, struct iked_childsa *last)
pfkey_sa_update_addresses(struct iked *env, struct iked_childsa *sa)
pfkey_sa_delete(struct iked *env, struct iked_childsa *sa)
pfkey_flush(struct iked *env)
pfkey_socket(struct iked *env)
pfkey_init(struct iked *env, int fd)
struct iked *env = (struct iked *)arg;
struct iked *env = arg;
pfkey_process(struct iked *env, struct pfkey_message *pm)
pfkey_flow(struct iked *env, uint8_t satype, uint8_t action, struct iked_flow *flow)
pfkey_sa(struct iked *env, uint8_t satype, uint8_t action, struct iked_childsa *sa)
pfkey_sa_lookup(struct iked *env, struct iked_childsa *sa, uint64_t *last_used,
policy_lookup_sa(struct iked *env, struct iked_sa *sa)
policy_test(struct iked *env, struct iked_policy *key)
policy_ref(struct iked *env, struct iked_policy *pol)
policy_unref(struct iked *env, struct iked_policy *pol)
sa_state(struct iked *env, struct iked_sa *sa, int state)
sa_new(struct iked *env, uint64_t ispi, uint64_t rspi,
policy_init(struct iked *env)
sa_free(struct iked *env, struct iked_sa *sa)
sa_free_flows(struct iked *env, struct iked_saflows *head)
sa_configure_iface(struct iked *env, struct iked_sa *sa, int add)
sa_lookup(struct iked *env, uint64_t ispi, uint64_t rspi,
policy_lookup(struct iked *env, struct iked_message *msg,
sa_dstid_lookup(struct iked *env, struct iked_sa *key)
sa_dstid_insert(struct iked *env, struct iked_sa *sa)
sa_dstid_remove(struct iked *env, struct iked_sa *sa)
user_lookup(struct iked *env, const char *user)
iked_radius_request_free(struct iked *env, struct iked_radserver_req *req)
struct iked *env;
iked_radius_request_send(struct iked *env, void *ctx)
void iked_radius_request_send(struct iked *, void *);
void iked_radius_acct_request(struct iked *, struct iked_sa *, uint8_t);
iked_radius_acct_on(struct iked *env)
iked_radius_request(struct iked *env, struct iked_sa *sa,
iked_radius_acct_off(struct iked *env)
iked_radius_acct_start(struct iked *env, struct iked_sa *sa)
iked_radius_acct_stop(struct iked *env, struct iked_sa *sa)
iked_radius_acct_request(struct iked *env, struct iked_sa *sa, uint8_t stype)
struct iked *env = dae->rd_env;
timer_set(struct iked *env, struct iked_timer *tmr,
void (*cb)(struct iked *, void *), void *arg)
timer_add(struct iked *env, struct iked_timer *tmr, int timeout)
timer_del(struct iked *env, struct iked_timer *tmr)
int vroute_process(struct iked *, int msglen, struct vroute_msg *,
struct iked *env = (struct iked *) arg;
vroute_init(struct iked *env)
vroute_cleanup(struct iked *env)
vroute_setaddr(struct iked *env, int add, struct sockaddr *addr,
vroute_getaddr(struct iked *env, struct imsg *imsg)
vroute_setdns(struct iked *env, int add, struct sockaddr *addr,
vroute_getdns(struct iked *env, struct imsg *imsg)
vroute_insertroute(struct iked *env, int rdomain, struct sockaddr *dest,
vroute_removeroute(struct iked *env, int rdomain, struct sockaddr *dest,
vroute_insertdns(struct iked *env, int ifidx, struct sockaddr *addr)
int vroute_setroute(struct iked *, uint32_t, struct sockaddr *, uint8_t,
vroute_removedns(struct iked *env, int ifidx, struct sockaddr *addr)
int vroute_doroute(struct iked *, int, int, int, uint8_t, struct sockaddr *,
vroute_insertaddr(struct iked *env, int ifidx, struct sockaddr *addr,
int vroute_doaddr(struct iked *, char *, struct sockaddr *, struct sockaddr *, int);
vroute_removeaddr(struct iked *env, int ifidx, struct sockaddr *addr,
int vroute_dodns(struct iked *, struct sockaddr *, int, unsigned int);
void vroute_cleanup(struct iked *);
vroute_setaddroute(struct iked *env, uint8_t rdomain, struct sockaddr *dst,
vroute_setcloneroute(struct iked *env, uint8_t rdomain, struct sockaddr *dst,
vroute_setdelroute(struct iked *env, uint8_t rdomain, struct sockaddr *dst,
vroute_setroute(struct iked *env, uint32_t rdomain, struct sockaddr *dst,
void vroute_insertaddr(struct iked *, int, struct sockaddr *, struct sockaddr *);
void vroute_removeaddr(struct iked *, int, struct sockaddr *, struct sockaddr *);
void vroute_insertdns(struct iked *, int, struct sockaddr *);
void vroute_removedns(struct iked *, int, struct sockaddr *);
void vroute_insertroute(struct iked *, int, struct sockaddr *, struct sockaddr *);
void vroute_removeroute(struct iked *, int, struct sockaddr *, struct sockaddr *);
vroute_getroute(struct iked *env, struct imsg *imsg)
vroute_getcloneroute(struct iked *env, struct imsg *imsg)
vroute_dodns(struct iked *env, struct sockaddr *dns, int add,
vroute_doroute(struct iked *env, int flags, int addrs, int rdomain, uint8_t type,
vroute_process(struct iked *env, int msglen, struct vroute_msg *m_rtmsg,
vroute_doaddr(struct iked *env, char *ifname, struct sockaddr *addr,