Google Git
Sign in
googlers / maze / iproute2 / aba383448c2e0c5442c14937b03b02fbbb5be3d1
commitaba383448c2e0c5442c14937b03b02fbbb5be3d1[log] [tgz]
authorNicolas Dichtel <nicolas.dichtel@6wind.com>Tue Jan 11 06:32:46 2011 +0000
committerStephen Hemminger <shemminger@vyatta.com>Thu Mar 17 10:02:02 2011 -0700
treef7e77c314fafe690f26a37358e07e7048608ed15
parent2c19bf6aafc4e4d58de2baab7e0a90cec1f8adc0 [diff]
iproute2: allow to specify truncation bits on auth algo

Hi,

here is a patch against iproute2 to allow user to set a state with a specific
auth length.

Example:
$ ip xfrm state add src 10.16.0.72 dst 10.16.0.121 proto ah spi 0x10000000
auth-trunc "sha256" "azertyuiopqsdfghjklmwxcvbn123456" 96 mode tunnel
$ ip xfrm state
src 10.16.0.72 dst 10.16.0.121
         proto ah spi 0x10000000 reqid 0 mode tunnel
         replay-window 0
         auth-trunc hmac(sha256)
0x617a6572747975696f707173646667686a6b6c6d77786376626e313233343536 96
         sel src 0.0.0.0/0 dst 0.0.0.0/0

Regards,
Nicolas

>From 522ed7348cdf3b6f501af2a5a5d989de1696565a Mon Sep 17 00:00:00 2001
From: Nicolas Dichtel <nicolas.dichtel@6wind.com>
Date: Thu, 23 Dec 2010 06:48:12 -0500
Subject: [PATCH] iproute2: allow to specify truncation bits on auth algo

Attribute XFRMA_ALG_AUTH_TRUNC can be used to specify
truncation bits, so we add a new algo type: auth-trunc.

Signed-off-by: Nicolas Dichtel <nicolas.dichtel@6wind.com>
2 files changed
tree: f7e77c314fafe690f26a37358e07e7048608ed15
  1. doc/
  2. etc/
  3. examples/
  4. genl/
  5. include/
  6. ip/
  7. lib/
  8. man/
  9. misc/
  10. netem/
  11. tc/
  12. testsuite/
  13. .gitignore
  14. ChangeLog
  15. configure
  16. COPYING
  17. Makefile
  18. README
  19. README.decnet
  20. README.distribution
  21. README.iproute2+tc
  22. README.lnstat
  23. RELNOTES