diff options
author | wollman <wollman@FreeBSD.org> | 1996-06-17 19:47:57 +0000 |
---|---|---|
committer | wollman <wollman@FreeBSD.org> | 1996-06-17 19:47:57 +0000 |
commit | 9e1f4da8091f53ffaaeb1bcff159bfa20ebb3882 (patch) | |
tree | 0da1fbf83510c208f9e14649f1af7536eae1e5e0 /usr.sbin/keyadmin/keys | |
download | FreeBSD-src-9e1f4da8091f53ffaaeb1bcff159bfa20ebb3882.zip FreeBSD-src-9e1f4da8091f53ffaaeb1bcff159bfa20ebb3882.tar.gz |
This is the `key' program from NRL's IPv6 distribution, heavily
hacked up by me to remove the IPv6 stuff (fow now). I renamed
it `keyadmin' since `key' was already taken by the S/Key calculator.
Its purpose is to act as a command-driven interface to the `PF_KEY'
socket domain, analogously to thefunction of route(8) in the
`PF_ROUTE' domain. This program is believed to be exportable, since
it does no actual cryptography itself.
Diffstat (limited to 'usr.sbin/keyadmin/keys')
-rw-r--r-- | usr.sbin/keyadmin/keys | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/usr.sbin/keyadmin/keys b/usr.sbin/keyadmin/keys new file mode 100644 index 0000000..b1657bf --- /dev/null +++ b/usr.sbin/keyadmin/keys @@ -0,0 +1,18 @@ +# This is an example key file. + +# The format of entries in this file is as follows: +# <type> <spi> <src> <dst> <transform> <key> [iv] +# +# where: +# +# <type> is currently one of { ah | esp } +# <spi> is a decimal number +# <src> is an IP address for the source this association applies to +# <dst> is an IP address for the destination this assoc. applies to +# <transform> is currently one of { md5 } for ah, { des-cbc } for esp +# <key> is a hexadecimal key value (key length is derived from hex len) +# [iv] is a hexadecimal initial value (length is derived from hex len) +# [this field is required for des-cbc, ignored for others] + +ah 1142 ::0 ::0 md5 0123456789abcdef0123456789abcdef +esp 1984 ::0 ::0 des-cbc 0123456789abcdef 11223344 |