mywiki:linux:ipsec
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| mywiki:linux:ipsec [2015/12/16 15:24] – [Kernel Terms] super | mywiki:linux:ipsec [2019/09/15 18:55] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| **IPSec Implementation in Linux** | **IPSec Implementation in Linux** | ||
| + | |||
| + | | Reference | {{: | ||
| ====== IPSEC Basic ====== | ====== IPSEC Basic ====== | ||
| Line 39: | Line 41: | ||
| ===== Kernel Terms ===== | ===== Kernel Terms ===== | ||
| - | | aalg | Authentication algo pointer | | + | | aalg | **Authentication** algo pointer | |
| - | | ealg | Encryption algo pointer | | + | | ealg | **Encryption** algo pointer | |
| - | | calg | | + | | calg | **Compression** algo pointer |
| - | | aead | Authentication Encryption with Associated Data pointer | Note: if (aead == NULL); then only authentication without any encryption | | + | | aead | **Authentication Encryption** with Associated Data pointer | Note: if (aead == NULL); then only authentication without any encryption |
| + | | encap | Data for **encapsulator**, | ||
| Line 239: | Line 242: | ||
| | xfrm_state_lookup() | SAD lookup based on spi | | | xfrm_state_lookup() | SAD lookup based on spi | | ||
| + | ===== IPSec SA initialize ===== | ||
| + | It is initialized by API: **static int esp_init_state(struct xfrm_state *x)**, which is defined in file: | ||
| + | * net/ | ||
| + | * net/ | ||
| ===== IPSec Tx steps ===== | ===== IPSec Tx steps ===== | ||
| < | < | ||
mywiki/linux/ipsec.1450250696.txt.gz · Last modified: (external edit)